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Abstract 

"Clarithmetic" is a generic name for formal number theories similar to Peano arithmetic, but based 
on computability logic instead of the more traditional classical or intuitionistic logics. Formulas of clar- 
ithmetical theories represent interactive computational problems, and their "truth" is understood as 
existence of an algorithmic solution. Imposing various complexity constraints on such solutions yields 
various versions of clarithmetic. The present paper introduces a system of clarithmetic for polynomial 
time computability, which is shown to be sound and complete. Sound in the sense that every theorem T 
of the system represents an interactive number-theoretic computational problem with a polynomial time 
solution and, furthermore, such a solution can be efficiently extracted from a proof of T. And complete in 
the sense that every interactive number-theoretic problem with a polynomial time solution is represented 
by some theorem T of the system. The paper is written in a semitutorial style and targets readers with 
no prior familiarity with computability logic. 
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1 Introduction 

Computability logic (CoL), introduced in |13[ 1171 is a semantical, mathematical and philosophical plat- 
form, and a long-term program, for redeveloping logic as a formal theory of computability, as opposed to 
the formal theory of truth which logic has more traditionally been. Under the approach of CoL, formulas 
represent computational problems, and their "truth" is seen as algorithmic solvability. In turn, computa- 
tional problems — understood in their most general, interactive sense — are defined as games played by a 
machine against its environment, with "algorithmic solvability" meaning existence of a machine that wins 
the game against any possible behavior of the environment. And an open-ended collection of the most basic 
and natural operations on computational problems forms the logical vocabulary of the theory. With this 
semantics, CoL provides a systematic answer to the fundamental question "w/ia< can be computed?" , just 
as classical logic is a systematic tool for telling what is true. Furthermore, as it turns out, in positive cases 
''what can be computed" always allows itself to be replaced by ''how can be computed", which makes CoL of 
potential interest in not only theoretical computer science, but many applied areas as well, including interac- 
tive knowledge base systems, resource oriented systems for planning and action, or declarative programming 
languages. 

While potential applications have been repeatedly pointed out in earlier papers on CoL, so far all tech- 
nical efforts had been mainly focused on finding axiomatizations for various fragments of this semantically 
conceived and inordinately expressive logic. Considerable advances have already been made in this direc- 
tion ([2]- [IS], IIH]-[2n], ED) I and more results in the same style are probably still to come. It should be 
however remembered that the main value of CoL, or anything else claiming to be a "Logic" with a capital 
"L", will eventually be determined by whether and how it relates to the outside, extra-logical world. In this 
respect, unlike many other systems officially classified as "logics", the merits of classical logic are obvious, 
most eloquently demonstrated by the fact that applied formal theories, a model example of which is Peano 
arithmetic PA, can be and have been successfully based on it. Unlike pure logics with their meaningless 
symbols, such theories are direct tools for studying and navigating the real world with its non-man-made, 
meaningful objects, such as natural numbers in the case of arithmetic. To make this point more clear to a 
computer scientist, one could compare a pure logic with a programming language, and applied theories based 
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on it with application programs written in that language. A programming language created for its own sake, 
mathematically or esthetically appealing but otherwise unusable as a general-purpose, comprehensive basis 
for application programs, would hardly be of much interest. 

So, in parallel with studying possible axiomatizations and various metaproperties of pure CoL, it would 
certainly be worthwhile to devote some efforts to justifying its right on existence through revealing its power 
and appeal as a basis for applied systems. First and so far the only concrete steps in this direction have 
been made very recently in [27], where a CoL-based system CLAl of (Peano) arithmetic was constructed^ 
Unlike its classical-logic-based counterpart PA, CLAl is not merely about what arithmetical facts are true, 
but about what arithmetical problems can be actually computed or effectively solved. More precisely, every 
formula of the language of CLAl expresses a number-theoretic computational problem (rather than just a 
true/false fact), every theorem expresses a problem that has an algorithmic solution, and every proof encodes 
such a solution. Does not this sound exactly like what the constructivists have been calling for? 

Unlike the mathematical or philosophical constructivism, however, and even unlike the early-day the- 
ory of computation, modern computer science has long understood that, what really matters, is not just 
computahility, but rather efficient computahility. So, the next natural step on the road of revealing the impor- 
tance of CoL for computer science would be showing that it can be used for studying efficient computahility 
just as successfully as for studying computability-in-principle. Anyone familiar with the earlier work on CoL 
could have found reasons for optimistic expectations here. Namely, every provable formula of any of the 
known sound axiomatizations of CoL happens to be a scheme of not only "always computable" problems, but 
"always efficiently computable" problems just as well, whatever efficiency exactly means in the context of 
interactive computation that CoL operates in. That is, at the level of pure logic, computahility and efficient 
computability yield the same classes of valid principles. The study of logic abounds with phenomena in this 
style. One example would be the well known fact about classical logic, according to which validity with 
respect to all possible models is equivalent to validity with respect to just models with countable domains. 

At the level of reasonably expressive applied theories, however, one should certainly expect significant dif- 
ferences depending on whether the underlying concept of interest is efficient computability or computability- 
in-principle. For instance, the earlier-mentioned system CLAl proves formulas expressing computable but 
often intractable arithmetical problems. A purpose of the present paper is to construct a CoL-based system 
for arithmetic which, unlike CLAl, proves only efficiently — specifically, polynomial time — computable 
problems. The new applied formal theory CLA4 presented in Section [TT] achieves this purpose. It is also 
a good starting point for exploring the wider class of systems under the generic name clarithmetid^ — 
arithmetical theories based on CoL, with CLA4 being a model example of complexity-oriented versions of 
clarithmetic, a series of other variations of which, such as systems for polynomial space computability, prim- 
itive recursive computability, PA-provably recursive computability and so on, are still to come in the near 
future (see |30l[3T]). Among the main purposes of the present piece of writing is to introduce the promising 
world of clarithmetic to a relatively wide audience. This explains the semitutorial style in which the paper 
is written. It targets readers with no prior familiarity with CoL. 

Just like CLAl, our present system CLA4 is not only a cognitive, but also a problem-solving tool: in 
order to find a solution for a given problem, it would be sufficient to write the problem in the language of 
the system, and find a proof of it. An algorithmic solution for the problem then would automatically come 
together with such a proof. However, unlike the solutions extracted from CLAl-proofs, which might be 
intractable, the solutions extracted from CLA4-proofs would always be efficient. 

Furthermore, CLA4 turns out to be not only sound, but also complete in a certain reasonable sense that 
we call extensional completeness. According to the latter, every number-theoretic computational problem 
that has a polynomial time solution is represented by some theorem of CLA4. Taking into account that 
there are many ways to represent the same problem, extensional completeness is weaker than what can be 
called intensional completeness, according to which any formula representing an (efficiently) computable 
problem is provable. In these terms, Godel's celebrated theorem, here with "truth" = "computability" , is 
about intensional rather than extensional incompleteness. In fact, extensional completeness is not at all 
interesting in the context of classical-logic-based theories such as PA. In such theories, unlike CoL-based 
theories, it is trivially achieved, as the provable formula T represents every true sentence. 

Syntactically, our CLA4 is an extension of PA, and the semantics of the former is a conservative 
generalization of the semantics of the latter. Namely, the formulas of PA, which form only a proper subclass 

^The paper |36| (in Chinese) is apparently another exception, focused on applications of CoL in AI. 
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of the formulas of CLA4, are seen as special, "moveless" sorts of problems/games, automatically solved/won 
when true and failed/lost when false. This makes the classical concept of truth just a special case of 
computability in our sense — it is nothing but computability restricted to (the problems represented by) the 
traditional sorts of formulas. And this means that Godel's incompleteness theorems automatically extend 
from PA to CLA4, so that, unlike extensional completeness, intensional completeness in CLA4 or any 
other sufficiently expressive sound CoL-based applied theory is impossible to achieve in principle. As for 
CLAl, it turns out to be incomplete in both senses. Section [TSl shows that any recursively axiomatizable, 
sufficiently expressive, sound system would be (not only intensionally but also) extensionally incomplete, as 
long as the semantics of the system is based on unrestricted (as opposed to, say, efficient) computability. 

Among the main moral merits of the present investigation and its contributions to the overall CoL project 
is an illustration of the fact that, in constructing CoL-based applied theories, successfully switching from 
computability to efficient computability is possible and even more than just possible. As noted, efficient 
computability, in fact, turns out to be much better behaved than computability-in-principle: the former 
allows us to achieve completeness in a sense in which the latter yields inherent incompleteness. 

An advanced reader will easily understand that the present paper, while focused on the system CLA4 of 
(cl)arithmetic, in fact is not only about arithmetic, but also just as much about CoL-based applied theories or 
knowledge base systems in general, with CLA4 only serving as a model example of such systems. Generally, 
the nonlogical axioms or the knowledge base of a CoL-based applied system would be any collection of 
(formulas expressing) problems whose algorithmic or efficient solutions are known. Sometimes, together with 
nonlogical axioms, we may also have nonlogical rules of inference, preserving the property of computability 
or efficient computability. Then, the soundness of the corresponding underlying axiomatization of CoL (in 
our present case, it is system CL12 studied in [371 US]) — which usually comes in the strong form called 
uniform- constructive soundness — guarantees that every theorem T of the theory also has an effective or 
efficient solution and that, furthermore, such a solution can be effectively or efficiently extracted from a 
proof of T. It is this fact that, as mentioned, makes CoL-based systems problem-solving tools. 

More specifically, efficiency-oriented systems in the above style and CLA4 in particular can be seen 
as programming languages, where "programming" simply means theorem-proving. The soundness of the 
underlying system guarantees that any proof that can be written will be translatable into a program that 
runs efficiently and indeed is a solution of the problem expressed by the target formula of the proof. Note that 
the problem of verifying whether a program meets its specification, which is generally undecidable, is fully 
neutralized here: the "specification" is nothing but the target formula of the proof, and the proof itself, while 
encoding an efficient program, also automatically serves as a verification of the correctness of that program. 
Furthermore, every step/formula of the proof can be viewed as its own (best possible) "comment" . In a more 
ambitious and, at this point, somewhat fantastic perspective, after developing reasonable theorem-provers, 
CoL-based efficiency-oriented systems can be seen as declarative programming languages in an extreme sense, 
where human "programming" just means writing a formula expressing the problem whose efficient solution 
is sought for systematic usage in the future. That is, a program simply coincides with its specification. The 
compiler's job would be finding a proof (the hard part) and translating it into a machine-language code (the 
easy part). The process of compiling could thus take long but, once compiled, the program would run fast 
ever after. 

Various complexity-oriented systems have been studied in the literature ([21 131 ISl IZl IE HI EHl ISSl ISi] 
and more). A notable advantage of CoL-based complexity-oriented systems over the other systems with 
similar aspirations, which typically happen to be inherently weak systems, is having actually or potentially 
unlimited strength, with the latter including the full expressive and deductive power of classical logic and 
Peano arithmetic. In view of the above-outlined potential applications, the importance of this feature is 
obvious: the stronger a system, the better the chances that a proof/program will be found for a declarative, 
non-preprocessed, ad hoc specification of the goal. Among the other appealing features of clarithmetic is 
being semantically meaningful in the full generality of its language, scalable, and easy to understand in its 
own right. Syntactically it also tends to be remarkably simple. For instance, on top of the standard Peano 
axioms, our present system CLA4 only has two additional axioms nx\-\y{y = x + l) and nx\-\y{y = 2x), one 
saying that the function a; + 1 is (efficiently) computable, and the other saying the same about the function 
2x. As will be seen later, from these two innocuous-looking axioms and one (also very simple) rule of 
induction called CLiA4-Induction, via CoL, one can obtain "practically full" information about polynomial 
time computability of number-theoretic problems, in the same sense as PA, despite Godel's incompleteness. 
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allows us to obtain "practically full" information about arithmetical truth. To put it in other words, if a 
formula F is not provable in CLA4, it is unlikely that anyone would find a polynomial time algorithm solving 
the problem expressed by F: either such an algorithm does not exist, or (as will be seen from Theorem ll6.2p 
showing its correctness requires going beyond ordinary combinatorial reasoning formalizable in PA. 

The closest ancestor of our present system CLA4 is Buss's bounded arithmetic for polynomial time. 
The similarity is related to the single yet important fact that the above-mentioned rule of CLA4-Induction 
is nothing but an adaptation of Buss's PIND ("Polynomial Induction") principle to the new semantical 
environment in which CLA4 operates. In this sense, CLA4 can be characterized as a "CoL-based bounded 
arithmetic", as opposed to Buss's original versions of bounded arithmetic that are based on classical ([3]) or 
intuitionistic ([7]) logics. The switch to CoL as the logical basis for such theories creates notable differences. 
Among the advantages offered by this switch is absolute flexibility (as long as certain minimum-strength 
requirements are satisfied) in selecting the underlying "purely arithmetical" axioms. Choosing the latter to 
be the kind old axioms of Peano, as done in CLA4, allows us to achieve dramatically greater (than in the 
case of Buss's systems) intensional strength. Furthermore, as shown in Section [TOl replacing Peano axioms 
with stronger ones can take us arbitrarily close to intensional completeness. This is just as far as one can go 
in similar pursuits because, as already noted, in view of Godel's incompleteness phenomenon, no particular 
recursively enumerable system can be intensionally complete. In contrast, even "slightly" increasing the 
strength of the underlying (carefully hand-picked and intensionally very weak) set of arithmetical axioms in 
classical-logic-based or intuitionistic-logic-based bounded arithmetic immediately results in loss of soundness. 
We will come back to this topic in Section [T71 

2 An informal overview of the main operations on games 

Introducing and justifying CoL in full generality is not among the goals of the present paper — this job has 
been done in [131 HZl [23 • We will reintroduce only as much of (the otherwise much wider) CoL as technically 
necessary for understanding the system CLA4 based on it. 

As noted, formulas in CoL represent computational problems. Such problems are understood as games 
between two players: T, called Machine, and _L, called Environment (these names will not always be 
capitalized, and may take articles "a" or "the"). Machine is a mechanical device with fully determined, 
algorithmic behavior. On the other hand, there are no restrictions on the behavior of Environment. A given 
machine is considered to be solving a given problem iff it wins the corresponding game no matter how the 
environment acts. 

Standard atomic sentences, such as "0 = 0" or "Peggy is John's mother", are understood as special sorts 
of games, called elementary. There are no moves in elementary games, and they are automatically won or 
lost. Specifically, the elementary game represented by a true sentence is won (without making any moves) 
by Machine, and the elementary game represented by a false sentence is won by Environment. 

Logical operators are understood as operations on games/problems. One of the important groups of 
such operations, termed choice operations, comprises n, U,n,U. These are called choice conjunc- 
tion, choice disjunction, choice universal quantifier and choice existential quantifier, respectively. 
Aq n Ai is a game where the first legal move ("choice"), which should be either or 1, is by _L. After such 
a move/choice i is made, the play continues and the winner is determined according to the rules of Ai; if a 
choice is never made, -L loses. Aq U Ai is defined in a symmetric way with the roles of -L and T interchanged: 
here it is T who makes an initial choice and who loses if such a choice is not made. With the universe 
of discourse being {0, 1, 10, 11, 100, . . .} (natural numbers identified with their binary representations), the 
meanings of the quantifiers Fl and U can now be explained by 

\lxA{x) = A{0) n A{1) n A{10) n A(ll) n A(IOO) n . . . 

and 

UxA{x) = A{0) u A{1) u yl(lO) u A{11) u A(IOO) u . . . . 

So, for example, 

\~\x(^Prime{x) U Composite{x)) 

is a game where the first move is by Environment. Such a move should consist in selecting a particular 
number n for x, intuitively amounting to asking whether n is prime or composite. This move brings the 
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game down to (in the sense that the game continues as) 

Primein) U Composite{n). 

Now Machine has to move, or else it loses. The move should consist in choosing one of the two disjuncts. 
Let us say the left disjunct is chosen, which further brings the game down to Prime{n). The latter is an 
elementary game, and here the interaction ends. Machine wins iff it has chosen a true disjunct. The choice 
of the left disjunct by Machine thus amounts to claiming/answering that n is prime. Overall, as we see, 
rix (^Prime{x) U Composite{x)) represents the problem of deciding the primality question!^ 
Similarly, 

VAxVAy\-\z{z = x x y) 

is the problem of computing the product of any two numbers. Here the first two moves are by Environment, 
which selects some particular m = x and n = y, thus asking Machine to tell what the product of m and n 
is. Machine wins if and only if, in response, it selects a (the) number k for z such that k = mxn. 

Another group of game operations dealt with in this paper comprises ^, A , V , -> . Employing the classical 
symbols for these operations is no accident, as they are conservative generalizations of the corresponding 
Boolean operations from elementary games to all games. 

Negation -i is a role-switch operation: it turns T's moves and wins into _L's moves and wins, and vice 
versa. Since elementary games have no moves, only the winners are switched there, so that, as noted, -< 
acts just as the ordinary classical negation when applied to such games. For instance, as T is the winner 
in + 1 = 1, the winner in ^0 + 1 = 1 will be ±. That is, T wins the negation -^A of an elementary game A iff 
it loses A, i.e., if A is false. As for the meaning of negation when applied to nonelementary games, at this 
point it may be useful to observe that ^ interacts with choice operations in the kind old DeMorgan fashion. 
For example, it would not be hard to see that 

-^nxnyL\z{z = x^y) = L\xL\ynz{z^xxy). 

The operations A and V are called parallel conjunction and parallel disjunction, respectively. 
Playing Aq a Ai (resp. AqV Ai) means playing the two games in parallel where, in order to win, T needs 
to win in both (resp. at least one) of the components Ai. It is obvious that, just as in the case of negation, 
A and V act as classical conjunction and disjunction when applied to elementary games. For instance, 
+ l = lvOxl = l is a game automatically won by Machine. There are no moves in it as there are no moves 
in either disjunct, and Machine is an automatic winner because it is so in the left disjunct. To appreciate 
the difference between the two — choice and parallel — groups of connectives, compare 

\~\x(^Prime{x) U -^Prime{x)^ 

and 

T\x{^Prime{x) V -^Prime{x)^ . 

The former is a computationally nontrivial problem, existence of an easy (polynomial time) solution for 
which had remained an open question until a few years ago. As for the latter, it is trivial, as Machine has 
nothing to do in it: the first (and only) move is by Environment, consisting in choosing a number n for x. 
Whatever n is chosen. Machine wins, as Prime{n) V -^Prime{n) is a true sentence and hence an automatically 
T-won elementary game. 

The operation — j> , called strict reduction, is defined hy A^ B — {^A) V B. Intuitively, this is indeed 
the problem of reducing B to A: solving A^ B means solving B while having A as an external computational 
resource. Resources are symmetric to problems: what is a problem to solve for one player is a resource that 
the other player can use, and vice versa. Since A is negated in {-<A) V B and negation means switching the 
roles, A appears as a resource rather than problem for T in A^ B. 

Consider nx\-\y{y = x'^). Anyone who knows the definition of x'^ in terms of x (but perhaps does not 
know the meaning of multiplication, or is unable to compute this function for whatever reason) would be 
able to solve the problem 

\~\z\~\uL\v{v = zxu) — > \~\xL\y{y = x'^), (1) 

^For simplicity, here we treat "Composite" as the complement of "Prime", even though, strictly speaking, this is not quite 
so: the numbers and 1 are neither prime nor composite. Writing "Nonprime" instead of "Composite" would easily correct 
this minor inaccuracy. 
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i.e., the problem 

L\zL\u\~\v{v^zxu) V \~\x\-\y{y = x'^), 

as it is about reducing the consequent to the antecedent. A solution here goes like this. Wait till Environment 
specifies a value n for x, i.e. asks "what is the square of n?" . Do not try to immediately answer this question, 
but rather specify the same value n for both z and u, thus asking the counterquestion: "what is n times 
n?". Environment will have to provide a correct answer m to this counterquestion (i.e., specify v as m where 
m — nxn), 01 else it loses. Then, specify y as to, and rest your case. Note that, in this solution. Machine did 
not have to compute multiplication, doing which had become Environment's responsibility. Machine only 
correctly reduced the problem of computing square to the problem of computing product, which made it the 
winner. 

Another group of operations that play an important role in CoL comprises V and its dual 3 (with 
3xA{x) = ~'\/x~'A{x)), called blind universal quantifier and blind existential quantifier, respectively. 
\/xA{x) can be thought of as a "version" of \~\xA{x) where the particular value of x that Environment selects 
is invisible to Machine, so that it has to play blindly in a way that guarantees success no matter what that 
value is. 

Compare the problems nx[Even{x) U Odd{x)) and \/x[Even{x) U Odd{x)^. Both of them are about telling 
whether a given number is even or odd; the difference is only in whether that "given number" is known to 
Machine or not. The first problem is an easy-to-win, two- move-deep game of a structure that we have already 
seen. The second game, on the other hand, is one-move deep with only Machine to make a move — select 
the "true" disjunct, which is hardly possible to do as the value of x remains unspecified. 

Just like all other operations for which we use classical symbols, the meanings of V and 3 are exactly 
classical when applied to elementary games. Having this full collection of classical operations makes CoL a 
generalization and conservative extension of classical logic. 

Going back to an earlier example, even though ([Ij expresses a "very easily solvable" problem, that 
formula is still not logically valid. Note that the success of the reduction strategy of the consequent to the 
antecedent that we provided for it relies on the nonlogical fact that x^=xxx. That strategy would fail in a 
general case where the meanings of and a; x x may not necessarily be the same. On the other hand, the 
goal of CoL as a general-purpose problem-solving tool should be to allow us find purely logical solutions, i.e., 
solutions that do not require any special, domain-specific knowledge and (thus) would be good no matter 
what the particular predicate or function symbols of the formulas mean. Any knowledge that might be 
relevant should be explicitly stated and included either in the antecedent of a given formula or in the set 
of axioms ( "implicit antecedents" for every potential formula) of a CoL-based theory. In our present case, 
formula ([1]) easily turns into a logically valid one by adding, to its antecedent, the definition of square in 
terms of multiplication: 

yw{'w'^ ='w ^w) /\\~\z\~\uVAv{v = z^u) — >• \~\xVAy{y = x'^). (2) 

The strategy that we provided earlier for ([IJ is just as good for ©, with the difference that it is successful 
for ([2|) no matter what x"^ and zy-u mean, whereas, in the case of ([IJ, it was guaranteed to be successful only 
under the standard arithmetical interpretations of the square and product functions. Thus, our strategy for 
^ is, in fact, a "purely logical" solution. 

The above examples should not suggest that blind quantifiers are meaningful or useful only when applied 
to elementary problems. The following is an example of a winnable nonelementary V-game: 

\fy(^Even{y) U Odd{y) nx[Even{x + y) U Odd{x + y))^ . (3) 

Solving this problem, which means reducing the consequent to the antecedent without knowing the value of 
y, is easy: T waits till _L selects a value n for x, and also tells — by selecting a U -disjunct in the antecedent 
— whether y is even or odd. Then, if n and y are both even or both odd, T chooses the left U -disjunct in 
the consequent, otherwise it chooses the right U -disjunct. Replacing the Vy prefix by Fly would significantly 
weaken the problem, obligating Environment to specify a value for y. Our strategy does not really need to 
know the exact value of y, as it only exploits the information about y's being even or odd, provided by the 
antecedent of the formula. 

Many more — natural, meaningful and useful — operations beyond the ones discussed in this section 
have been introduced and studied within the framework of CoL. Here we have only surveyed those that are 
relevant to our present investigation. 
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3 Constant games 



Now we are getting down to formal definitions of the concepts informally explained in the previous section. 

To define games formally, we need certain technical terms and conventions. Let us agree that a move 
means any finite string over the standard keyboard alphabet. A labeled move (labmove) is a move prefixed 
with T or _L, with such a prefix (label) indicating which player has made the move. A run is a (finite or 
infinite) sequence of labmoves, and a position is a finite run. 

We will be exclusively using the letters F, A, $ for runs, and a, /3 for moves. The letter p will always be 
a variable for players, and 

P 

will mean "p's adversary" ("the other player"). Runs will be often delimited by "(" and ")", with () thus 
denoting the empty run. The meaning of an expression such as ($, pa,r) must be clear: this is the result 
of appending to the position ($) the labmove (pa) and then the run (F). 

The following is a formal definition of what we call constant games, combined with some less formal 
conventions regarding the usage of certain terminology. 

Definition 3.1 A constant game is a pair A — (Lr'^. Wn^), where: 

1. Lr"* is a set of runs satisfying the condition that a (finite or infinite) run is in Lr^ iff all of its 
nonempty finite initial segments are in Lr'^ (notice that this implies () G Lr^). The elements of Lr"^ are 
said to be legal runs of A, and all other runs are said to be illegal. We say that a is a legal move for 
p in a position $ of A iff ($, pa) € Lr'^; otherwise a is illegal. When the last move of the shortest illegal 
initial segment of F is p-labeled, we say that F is a p-illegal run of A. 

2. Wn^ is a function that sends every run F to one of the players T or ±, satisfying the condition that 
if F is a p-illcgal run of A, then Wn^(F) = p. When Wn'^(F) = p, we say that F is a p-won (or won by 
p) run of A; otherwise F is lost by p. Thus, an illegal run is always lost by the player who has made the 
first illegal move in it. 

An important operation not explicitly mentioned in Section [5] is what is called prefixation. This operation 
takes two arguments: a constant game A and a position $ that must be a legal position of A (otherwise 
the operation is undefined), and returns the game {^)A. Intuitively, {^)A is the game playing which means 
playing A starting (continuing) from position $. That is, {^)A is the game to which A evolves (will be 
"brought down" ) after the moves of <I> have been made. We have already used this intuition when explaining 
the meaning of choice operations in Section [2j we said that after ± makes an initial move i G {0, 1}, the 
game n continues as Ai. What this meant was nothing but that (_Lz)(Ao n Ai) = Ai. Similarly, 
{Ti){Ao U Ai) — Ai. Here is a definition of prefixation: 

Definition 3.2 Let A be a constant game and $ a legal position of A. The game {^)A is defined by: 
. LrW^ = {F| ($,F)eLr'4}; 
• WnW'^(F) = Wn^($,F). 

A terminological convention important to remember is that we often identify a legal position $ of a game 
A with the game {^)A. So, for instance, we may say that the move 1 by _L brings the game Bq n Bi down 
to the position Bi. Strictly speaking, Bi is not a position but a game, and what is a position is (-L1), which 
we here identified with the game Bi — (_Ll)(i?o n Bi). 

We say that a constant game A is finite-depth iff there is an integer d such that no legal run of A 
contains more than d labmoves. The smallest of such integers d is called the depth of A. "Elementary" 
means "of depth 0" . 

This paper will exclusively deal with finite-depth games. This restriction of focus makes many definitions 
and proofs simpler. Namely, in order to define a finite-depth-preserving game operation 0{Ai, . . . , An) 
applied to such games, it suffices to specify the following: 

(i) Who wins 0{Ai, . . . , An) if no moves are made, i.e., the value of ■Wn'^*-'^^' ' ''*"-'(). 



7 



(ii) What are the initial legal (lab)moves, i.e., the elements of {pa \ (pa) G Lr*^^"^^' "'^"-'}, and to what 
game is the game 0{Ai, . . . , An) brought down after such an initial legal labmove pa is made. Recall 
that, by saying that a given labmove pa brings a given game A down to B, we mean that {pa) A = B. 

Then, the set of legal runs of 0{Ai , . . . , An) will be uniquely defined, and so will be the winner in every legal 
(and hence finite) run of the game. 

Below we define a number of operations for finite-depth games only. Each of these operations can be 
easily seen to preserve the finite-depth property. Of course, more general definitions of these operations — 
not restricted to finite-depth games — do exist (see, e.g., but in this paper we are trying to keep things 

as simple as possible. 

Definition 3.3 Let A, B, Aq, Ai, . . . be finite-depth constant games, and n be a positive integer, 
f . -^A is defined by: 

(i) Wn^^O p iff Wn-^O = p. 

(ii) (pa) G hr^^ iff (pa) G hr^. Such an initial legal labmove pa brings the game down to 
^{pa)A. 

2. Aq n ... n An is defined by: 

(i) Wn-^^^-n-^-O = T. 

(ii) (pa) G Lr'^" " ^ iff p = ± and a = i G {0, . . . , n}ll Such an initial legal labmove -Li 
brings the game down to Ai. 

3. Aq A ... A An is defined by: 

(i) Wn-^" ^ - ^ = T iff, for each i G {0, . . . , n}, Wn^' () = T. 

(ii) (pa) G -Lr^^o A ... A A„ jfj ^ ^ ^^^^ where i G {0, . . . , n} and (p^) G Lr^'. Such an initial 
legal labmove pi./3 brings the game down to 

AqA ... AAi^iA{pl3)A,AAi + iA ... AAn. 

4. ^0 u . . . U An and AqW ... V An are defined exactly as n . . . n An and Aq A ... A An , respectively, 
only with "T" and "_L" interchanged. 

5. The infinite n -conjunction AqH AiH . . . is defined exactly as AqH ... n An, only with "i G {0, 1, . . .}" 
instead of "i G {0, . . . , n}" . Similarly for the infinite version of U . 

6. In addition to the earlier-established meanings, the symbols T and ± also denote two special — simplest 
— constant games, defined by Wn^() = T, Wn^() = ± and Lr^ = Lr^ = {()}. 

7. A^ B is treated as an abbreviation of {^A) V B. 

Example 3.4 The game (0 = n = 1) ^ (10 = 11 n 10 = 10), i.e. ^(0 = n = 1) V (10 = 11 n 10 = 10), has thir- 
teen legal runs, which are: 

1 (). It is won by T, because T is the winner in the right V -disjunct (consequent). 

2 (TO.O). (The labmove of) this run brings the game down to -iO = V (10 = If n 10 = 10), and T is the winner 

for the same reason as in the previous case. 

3 (TO. I). It brings the game down to ^0=1 V (10 = 11 n 10 = 10), and T is the winner because it wins in both 

V -disjuncts. 

4 (±1.0). It brings the game down to -^(0 = n = 1) V 10 = 11. T loses as it loses in both V-disjuncts. 

^ Here the number i is identified with the standard bit string representing it in the binary notation. The same appHes to the 
other clauses of this definition. 



8 



5 (_L1.1). It brings the game down to -i(0 = n = 1) V 10 = 10. T wins as it wins in the right V -disjunct. 

6-7 (TO.O, _L1.0) and (_L1.0, TO.O). Both bring the game down to the false -.0 = V 10 = 11, and both are lost 
byT. 

8-9 (TO.l, ±1.0) and (_L1.0, TO.l). Both bring the game down to the true -.0 = 1 V 10 = 11, which makes T 

the winner. 

10-11 (TO.O, ±1.1) and (±1.1, TO.O). Both bring the game down to the true ^0 = V 10 = 10, so T wins. 
12-13 (TO.l, ±1.1) and (±1.1, TO.l). Both bring the game down to the true -.0 = 1 V 10 = 10, so T wins. 

4 Games as generalized predicates 

Constant games can be seen as generalized propositions: while propositions il logic are just elements 

of {T, ±}, constant games are functions from runs to {T, ±}. As we know, however, propositions only offer 
very limited expressive power, and classical logic needs to consider the more general concept of predicates, 
with propositions being nothing but special — constant — cases of predicates. The situation in CoL is 
similar. Our concept of a (simply) game generalizes that of a constant game in the same sense as the 
classical concept of a predicate generalizes that of a proposition. 

We fix an infinite set of expressions called variables, for which we will be using x,y,z,s,r,t,u,v,w 
as metavariables. An expression like x will usually stand for a finite sequence of variables. Similarly for 
later-dcifincxl objects such as constants or terms. 

We also fix another infinite set of expressions called constants: 

{e, 1, 10, 11, 100, 101, 110, 111, 1000, . . .}. 

These are thus binary numerals — the strings matching the regular expression eUl(OUl)*, where e is the 

empty string. We will be typically identifying such strings — by some rather innocent abuse of concepts — 
with the natural numbers represented by them in the standard binary notation, and vice versa. Note that 
e represents 0. For this reason, following the many-century tradition, we shall usually write instead of e, 
keeping in mind that, in such contexts, the length |0| of the string should be seen to be rather than 1. 
We will be mostly using a, b, c, d as metavariables for constants. 

A universe (of discourse) is a pair {U,^ ), where f/ is a nonempty set, and ^ , called the naming function 
of the universe, is a function that sends each constant c to an clement of U. The intuitive meaning of 
c*^ = s is that c is a name of s. Both terminologically and notationally, we will typically identify each 
universe {U,^ ) with its first component and, instead of "(f/,^)", write simply "/7", keeping in mind that 
each such "imiverse" U comes with a fixed associated function ^ . A universe U = {U,^ ) is said to be ideal 
iff U coincides with the above-fixed set of constants, and ^ is the identity function on that set. Note that, 
in a non-ideal universe, such as the set of all real numbers, some objects may have several names (e.g., 
1/3,2/6,3/9 are different names of the same number), some have unique names (e.g. the famous number 
tt), and some have no names at all. The same applies to the universe of astronomy, where some stars and 
planets have unique names, some have several names (Venus = Morning Star = Evening Star), and most 
have no names at all. On the other hand, the standard universe of arithmetic is ideal: every natural number 
has a unique name — the corresponding binary numeral — with which it can be identified. 

By a valuation on a universe U, or a i7-valuation, we mean a mapping e that sends each variable x to an 
element e{x) of U. When a universe U is fixed, irrelevant or clear from the context, we may omit references 
to it and simply say "valuation" . In these terms, a classical predicate p can be understood as a function that 
sends each valuation e to a proposition, i.e., to a constant predicate. Similarly, what we call a game sends 
valuations to constant games: 

Definition 4.1 Let i7 be a universe. A game on t/ is a function A from J7- valuations to constant games. 
We write e[A] (rather than A(e)) to denote the constant game returned by A on valuation e. Such a constant 
game e[A] is said to be an instance of A. For readability, we usually write Lr^ and Wn^ instead of Lr'^''*^ 
and Wn^t^l. 
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Just as this is the case with propositions versus predicates, constant games in the sense of Definition 
13.11 wih be thought of as special, constant cases of games in the sense of Definition 14.11 In particular, each 
constant game A' is the game A such that, for every valuation e, e[A] = A' . From now on we will no longer 
distinguish between such A and A' , so that, if A is a constant game, it is its own instance, with A — e[A] 
for every e. 

Where n is a natural number, we say that a game A is n-ary iff there are n variables such that, for any 
two valuations ei and 62 that agree on all those variables, we have ei[A] = 62 [A]. Generally, a game that is 
n-ary for some n, is said to be finitary. Our paper is going to exclusively deal with finitary games and, for 
this reason, we agree that, from now on, when we say "game", we usually mean "finitary game". 

For a variable x and valuations ei, 62, we write ei =x £2 to mean that the two valuations have the same 
universe and agree on all variables other than x. 

We say that a game A depends on a variable x iff there are two valuations 61,62 with ei =x 62 such 
that e.i[A\ ^ 62(^4]. An n-ary game thus depends on at most n variables. And constant games are nothing 
but 0-ary games, i.e., games that do not depend on any variables. 

We say that a (not necessarily constant) game A is elementary iff so are all of its instances e[A\. And 
we say that A is finite-depth iff there is a (smallest) integer d, called the depth of A, such that the depth 
of no instance of A exceeds d. 

Just as constant games are generalized propositions, games can be treated as generalized predicates. 
Namely, we will see each predicate p of whatever arity as the same-arity elementary game such that, for 
every valuation 6, Wn^() = T iff p is true at e. And vice versa: every elementary game p will be seen 
as the same-arity predicate which is true at a given valuation e iff Wn^() = T. Thus, for us, "predicate" 
and "elementary game" are going to be synonyms. Accordingly, any standard terminological or notational 
conventions familiar from the literature for predicates also apply to them seen as elementary games. 

Just as the Boolean operations straightforwardly extend from propositions to all predicates, our opera- 
tions ^, A , V , — ^ , n , U extend from constant games to all games. This is done by simply stipulating that 
e[. . .] commutes with all of those operations: -<A is the game such that, for every valuation e, 6[-i^] = ^6[A]; 
AnB is the game such that, for every valuation e, 6[Ani3] = e[A] ne[B]; etc. So does the operation of 
prefixation: provided that $ is a legal position of every instance of A, {^)A is understood as the unique 
game such that, for every valuation e, e[($)^] = ($)6[yl]. 

Definition 4.2 Let A be a finite-depth game on a universe U, Xi, . . . ,Xni>e pairwise distinct variables, and 
ci, . . . , c„ be constants. On the same universe, the game which we cah the result of substituting Xi , . . . , 
by ci, . . . , Cn in A, denoted A(xi/ci, . . . , a;„/c„), is defined by stipulating that, for every valuation e on U, 
e[A{xi/ci, . . . ,Xn/cn)] ~ e' [A] , where e' is the valuation on U that sends each Xi to Ci and agrees with e on 
all other variables. 

Following the standard readability-improving practice established in the literature for predicates, we will 
often fix pairwise distinct variables . . . , a;„ for a game A and write A as A[x\^ . . . , x„). Representing A in 
this form sets a context in which we can write A(ci, . . . , c„) to mean the same as the more clumsy expression 
^(xi/ci, . . . ,x„/c„). 

Definition 4.3 Let A{x) be a finite-depth game on a given universe. On the same universe, V\xA(x) and 
VAxA(x) are defined as the following two games, respectively: 

^(0) n A[\) n A(10) n A{\\) n A(IOO) n . . . ; 
^(0) u A{\) u ^(10) u A{\{) u A(IOO) u . . . . 

Thus, every initial legal move of V\xA(x) or VAxA(x) is a constant c G {0, 1, 10, 11, 100, . . .}, which in our 
informal language we may refer to as "the constant chosen (by the corresponding player) for a;" . 

We will say that a game A is unistructural iff, for any two valuations 61 and 62, Lr^^ — Lr^^. Of 
course, all constant or elementary games are unistructural. It can also be easily seen that all our game 
operations preserve the unistructural property of games. For the purposes of the present paper, considering 
only unistructural games would be sufficient. 

We define the remaining operations V and 3 only for unistructural games: 
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Definition 4.4 Below A{x) is an arbitrary finite-depth unistructural game on a universe U. On the same 
universe: 



1. The game \fxA{x) is defined by stipulating that, for every t/-valuation e, player p and move a, we have: 

(i) Wn^'^^^^'^O = T iff, for every valuation g with g =^ e, Wn^("^)() = T. 

(ii) (pa) e £,1-^2:^(2;) -g: ^^^^ g Lr^''^^ Such an initial legal labmove pa brings the game 
e[ixA{x)] down to e[\/x{pa)A{x)]. 

2. The game 3xA{x) is defined in exactly the same way, only with T and -L interchanged. 

Example 4.5 Consider the game ^ on the ideal universe, discussed earlier in Section [21 The sequence 
(_L1.11, ±0.0, Tl.l) is a legal run of ([31), the effects of the moves of which are shown below: 

^ : yy(^Even{y) U Odd{y) nx{Even{x + y) U Odd{x + y))^ 

(±1.11)® : Vy{Even{y)uOdd{y)^Even{ll + y)uOdd{ll+y)) 

(±1.11, ±0.0)0 : yy( Evenly) ^ Even{ll + y)u Odd{ll + y)) 

(±1.11, ±0.0,71.1)0 : yylEven{y) ^ Odd{n+y)) 

The play hits (ends as) the true proposition Vy (^Even{y) — >• Odd{ll + y)^ and hence is won by T. 

Before closing this section, we want to make the rather straightforward observation that the DeMorgan 
dualities hold for all of our sorts of conjunctions, disjunctions and quantifiers, and so does the double negation 
principle. That is, we always have: 

-n^A ^ A- 



-^{AaB) =^Av^B 
-^{AnB) = ^Au^B 
-n\/xA{x) = 3x^A{x) 
-.\lxA{x) ^ L\x^A{x) 



n(AvS) = -^Aa^B; 
-.{AuB) = -nAn^B; 
n3xA{x) = yx^A{x); 
-.L\xA{x) = \lx^A{x). 



5 Algorithmic strategies through interactive machines 

In traditional game-semantical approaches, including Blass's [H [5] approach which is the closest precursor 
of ours, player's strategies are understood as functions — typically as functions from interaction histories 
(positions) to moves, or sometimes ([T]) as functions that only look at the latest move of the history. This 
strategies- as- functions approach, however, is inapplicable in the context of CoL, whose relaxed semantics, 
in striving to get rid of "bureaucratic pollutants" and only deal with the remaining true essence of games, 
does not impose any regulations on which player can or should move in a given situation. Here, in many 
cases, either player may have (legal) moves, and then it is unclear whether the next move should be the 
one prescribed by T's strategy function or the one prescribed by the strategy function of ±. For a game 
semantics whose ambition is to provide a comprehensive, natural and direct tool for modeling interaction, 
the strategies-as-functions approach would be less than adequate, even if technically possible. This is so for 
the simple reason that the strategies that real computers follow are not functions. If the strategy of your 
personal computer was a function from the history of interaction with you, then its performance would keep 
noticeably worsening due to the need to read the continuously lengthening — and, in fact, practically infinite 
— interaction history every time before responding. Fully ignoring that history and looking only at your 
latest keystroke in the spirit of [1] is also not what your computer does, either. 

In CoL, (T's effective) strategies are defined in terms of interactive machines, where computation is one 
continuous process interspersed with — and influenced by — multiple "input" (environment's moves) and 
"output" (machine's moves) events. Of several, seemingly rather different yet equivalent, machine models of 
interactive computation studied in CoL, here we will employ the most basic, HPM ("Hard-Play Machine") 
model. 

An HPM is nothing but a Turing machine with the additional capability of making moves. The adversary 
can also move at any time, with such moves being the only nondeterministic events from the machine's 



11 



perspective. Along with the ordinary work tape, the machine has an additional tape called the run tape. 
The latter, serving as a dynamic input, at any time spells the "current position" of the play. Its role is to 
make the run fully visible to the machine. 

In these terms, an algorithmic solution (T's winning strategy) for a given constant game A is understood 
as an HPM M. such that, no matter how the environment acts during its interaction with Ai (what moves it 
makes and when), the run incrementally spelled on the run tape is a T-won run of A. As for ±'s strategies, 
there is no need to define them: all possible behaviors by _L are accounted for by the different possible 
nondeterministic updates of the run tape of an HPM. 

In the above outline, we described HPMs in a relaxed fashion, without being specific about technical 
details such as, say, how, exactly, moves are made by the machine, how many moves either player can make 
at once, what happens if both players attempt to move "simultaneously", etc. As it turns out, all reasonable 
design choices yield the same class of winnable games as long as we consider a certain natural subclass of 
games called static. Such games are obtained by imposing a certain simple formal condition on games (see, 
e.g.. Section 5 of [H]), which we do not reproduce here as nothing in this paper relies on it. We shall only 
point out that, intuitively, static games are interactive tasks where the relative speeds of the players are 
irrelevant, as it never hurts a player to postpone making moves. In other words, static games are games 
that are contests of intellect rather than contests of speed. And one of the theses that CoL philosophically 
relies on is that static games present an adequate formal counterpart of our intuitive concept of "pure" , 
speed-independent interactive computational problems. Correspondingly, CoL restricts its attention (more 
specifically, possible interpretations of the atoms of its formal language) to static games. All elementary 
games turn out to be trivially static, and the class of static games turns out to be closed under all game 
operations studied in CoL. More specifically, all games expressible in the language of the later-defined logic 
CL12, or theory CLA4, are static, as well as constant, finitary and finite-depth. Accordingly, we agree 
that, in this paper, we shall use the term "computational problem", or simply "problem", as a synonym 
of "constant, finitary, finite-depth, static game". 

6 The HPM model in greater detail 

As noted, computability of static games is rather robust with respect to the technical details of the underlying 
model of interaction. And the loose description of HPMs that we gave in the previous section would be 
sufficient for most purposes, just as mankind had been rather comfortably studying and using algorithms 
long before the Church- Turing thesis in its precise form came around. Namely, relying on just the intuitive 
concept of algorithmic strategies (believed in CoL to be adequately captured by the HPM model) would be 
sufficient if we only needed to show existence of such strategies for various games. As it happens, however, 
later sections of this paper need to arithmetize such strategies in order to prove the promised extensional 
completeness of CLA4. The complexity-theoretic concepts defined in the next section also require certain 
more specific details about HPMs, and in this section we provide such details. It should be pointed out again 
that most — if not all — of such details are "negotiable" , as different reasonable arrangements would yield 
equivalent models. 

Just like an ordinary Turing machine, an HPM has a finite set of states, one of which has the special 
status of being the start state. There are no accept, reject, or halt states, but there are specially designated 
states called move states. It is assumed that the start state is not among the move states. As noted earlier, 
this is a two-tape machine, with a read-write work tape and read-only run tape. Each tape has a beginning 
but no end, and is divided into infinitely many cells, arranged in the left-to-right order: cell #0, cell #1, 
cell #2, etc. At any time, each cell will contain one symbol from a certain fixed finite set of tape symbols. 
The blank symbol, as well as T and _L, are among the tape symbols. We also assume that these three 
symbols are not among the symbols that any (legal or illegal) move can ever contain. Either tape has its 
own scanning head, at any given time looking (located) at one of the cells of the tape. A transition from 
one computation step ("clock cycle") to another happens according to the fixed transition function 
of the machine. The latter, depending on the current state, and the symbols seen by the two heads on the 
corresponding tapes, deterministically prescribes the next state, the tape symbol by which the old symbol 
should be overwritten in the current cell (the cell currently scanned by the head) of the work tape, and, for 
each head, the direction — one cell left or one cell right — in which the head should move. A constraint 
here is that the blank symbol, T or _L can never be written by the machine on the work tape. An attempt 
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to move left when the head of a given tape is looking at the leftmost cell results in staying put. So does an 
attempt to move right when the head is looking at the blank symbol. 

When the machine starts working, it is in its start state, both scanning heads are looking at the leftmost 
cells of the corresponding tapes, and (all cells of) both tapes are blank (i.e., contain the blank symbol). 
Whenever the machine enters a move state, the string a spelled by (the contents of) its work tape cells, 
starting from cell #0 and ending with the cell immediately left to the work-tape scanning head, will be 
automatically appended — at the beginning of the next clock cycle — to the contents of the run tape in 
the T-prefixed form Ta. And, on every transition, whether the machine is in a move state or not, any finite 
sequence -L/3i, . . . , -L/3m of _L-labeled moves may be nondeterministically appended to the contents of the 
run tape. If the above two events happen on the same clock cycle, then the moves will be appended to the 
contents of the run tape in the following order: Ta_L/3i . . . _L/3„i (note the technicality that labmoves are 
listed on the run tape without blanks or commas between them). 

With each labmove that emerges on the run tape, we associate its timestamp, which is the number of 
the clock cycle immediately preceding the cycle on which the move first emerged on the run tape. Intuitively, 
the timestamp indicates on which cycle the move was made rather than appeared on the run tape: a move 
made during cycle #i appears on the run tape on cycle #i + l rather than #i. Also, we agree that the count 
of clock cycles, just like the count of cells, starts from 0, meaning that the very first clock cycle is cycle #0 
rather than #1. 

A configuration of a given HPM is a full description of the contents of the two tapes, the locations 
of the two scanning heads, and the state of the machine at the beginning of some ("current") clock cycle. A 
computation branch of M is an infinite sequence Co, Ci, C2, . . . of configurations of AA, where Co is the 
initial configuration (as explained earlier), and every C^ + i is a configuration that could have legally followed 
(again, in the sense explained earlier) Ci. For a computation branch _B, the run spelled by B is the run F 
incrementally spelled on the run tape in the corresponding scenario of interaction. We say that such a F is 
a run generated by the machine. 

We say that a given HPM wins (computes, solves) a given constant game A — and write Ai A 
— iff every run F generated by is a T-won run of A. We say that A is computable iff there is an HPM 
A4 such that Ai \= A; such an HPM is said to be an (algorithmic) solution, or winning strategy, for A. 

7 Interactive complexity 

The size of a move a means the length of a as a string. In the context of a given computation branch of a 
given HPM M, by the background of a clock cycle c we mean the greatest of the sizes of Environment's 
moves made by (before) time c, or if there are no such moves. If M. makes a move on cycle c, then the 
background of that mov^ means the background of c. Next, whenever A4 makes a move on cycle c, by the 
timecost of that move we mean c-d, where d is the greatest cycle with d<c on which a move was made by 
either player, or is if there is no such cycle. 

Throughout this paper, an n-ary arithmetical function means a function from n-tuples of natural 
numbers to natural numbers. As always, "unary" means "1-ary" . 

Definition 7.1 Let h he a unary arithmetical function, and A4 an HPM. 

1. We say that A4 runs in time h, or that 7W is an /i time machine, or that ft, is a bound for the 
time complexity of At, iff, in every play (computation branch), for any clock cycle c on which Ai makes a 
move, neither the timecost nor the size of that move exceeds h{£), where £ is the background of c. 

2. We say that Ai runs in space h, or that is an ft, space machine, or that ft, is a bound for the 
space complexity of Ai, iff, in every play (computation branch), for any clock cycle c, the number of cells 
ever visited by the work-tape head of Ai by time c does not exceed h{£), where £ is the background of c. 

Our time complexity concept can be seen to be in the spirit of what is usually called response time. 
The latter generally does not and should not depend on the length of the preceding interaction history. 
On the other hand, it is not and should not be merely a function of the adversary's last move, either. A 
similar characterization applies to our concept of space complexity. Both complexity measures are equally 

*As easily understood, here and in similar contexts, "move" means a move not as a string, but as an event, namely, the 
event of jVf making a move at time c. 
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meaningful whether it be in the context of "short-lasting" games (such as the ones represented by the formulas 
of the later-defined logic CL12) or the context of games that may have "very long" and even infinitely long 
legal runs. 

Let A be a constant game, h a unary arithmetical function, and A4 an HPM. We say that A4 wins 
(computes, solves) A in time h, or that 7W is an /i time solution for A, iff is an /i time machine 
with Ai \^ A. We say that A is computable (v^rinnable, solvable) in time h iff it has an h time solution. 
Similarly for "space" instead of "time" . 

When we say polynomial time, it is to be understood as "time h for some polynomial function /i". 
Similarly for polynomial space. 

Many concepts introduced within the framework of CoL are generalizations — for the interactive context 
— of ordinary and well-studied concepts of the traditional theory of computation. The above-defined time 
and space complexities are among such concepts. Let us focus on polynomial time for the rest of this section, 
and look at the traditional notion of polynomial time computability of a function f{x) for instance. With 
a moment's thought, it can be seen to be equivalent to polynomial time computability (in our sense) of 
the problem \~\x\-iy(y — /(x)). Similarly, polynomial time decidability of a predicate p{x) means the same 
as polynomial time computability of the problem \~\x(^-^p{x) Up{x)). Further, what is traditionally called 
(mapping) polynomial time reducibility of a predicate p{x) to a predicate q{x) can be seen to mean nothing 
but polynomial time computability of the problem \~\xL\y(p{x) -f-^- q{y)), where i? o is an abbreviation of 
{E ^ F) A (F ^ E). If we want to say that a particular function f{x) is a polynomial time reduction of p{x) 

to q{x), then we can write rixLlyijj = /(a;)) AVa;^p(a;) O q(^f{x))^. And so on. 

Our formalism can be used for systematically defining and studying an infinite variety of meaningful 
complexity-theoretic properties, relations and operations, only some of which (as the above ones) may have 
established names in the literature. Consider, for instance, the problem 

r\x(-^q{x) U q{x)) r\xl^-np{x) Up{x)). (4) 

It expresses (its polynomial time computability means, that is) a sort of polynomial time reducibility of 
p{x) to q{x). This reducibility can be seen to be strictly weaker than the traditional sort of polynomial 
time reducibility captured by the earlier mentioned nxL\y(_y = /(x)). For instance, every predicate p{x) is 
reducible to its complement -^p{x) in the sense of Namely, a polynomial time strategy for 

nx(^p{x) U -^p{x)) na;(-ip(x) Up(a;)) 

goes as follows. Wait till a value n for x is specified in the consequent. Then specify the same value for x 
in the antecedent. Further wait till a U -disjunct is selected in the antecedent. If the first (resp. second) 
disjunct is selected there, select the second (resp. first) U -disjunct in the consequent, and celebrate victory. 
On the other hand, we cannot say that every predicate p{x) is also polynomial time reducible — in the 
sense of \~\xUy(y = f{x)) — to its complement. Take p{x) to be any coNP-complete predicate. If it was 
polynomial time reducible to its complement, then we would have NP=coNP. 

8 The language of logic CL12 and its semantics 

Logic CL12 will be axiomatically constructed in Section [9l The present section is merely devoted to its 
language. The building blocks of the formulas of the latter are: 

• Nonlogical predicate letters, for which we use p, q as metavariables. With each predicate letter is 
associated a fixed nonnegative integer called its arity. We assume that, for any n, there are infinitely 
many n-ary predicate letters. 

• Function letters, for which we use /, g as metavariables. Again, each function letter comes with a 
fixed arity, and we assume that, for any n, there are infinitely many n-ary function letters. 

• The binary logical predicate letter =. 

• Infinitely many variables and constants. These are the same as the ones fixed in Section S) 
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Terms, for which wc use r, ip, ^, x, S, f] as metavariables, are built from variables, constants and hmetion 
letters in the standard way. An atomic formula is p(ri, . . . , r„), where p is an n-ary predicate letter and 
the Ti are terms. When p is 0-ary, we write p instead of p{). Also, we write ti=T2 instead of =(ri,r2), 
and Ti^T2 instead of -'(ti=T2). Formulas arc built from atomic formulas, propositional connectives T,± 
(0-ary), -i (1-ary), A , V , n , U (2-ary), variables and quantifiers V, 3, U in the standard way, with the 
exception that, officially, -> is only allowed to be applied to atomic formulas. The definitions of free and 
bound occurrences of variables arc also standard (with U acting as quantifiers along with V, 3). A formula 
with no free occurrences of variables is said to be closed. 

Note that, terminologically, T and _L do not count as atoms. For us, atoms are formulas containing no 
logical operators. The formulas T and _L do not qualify because they are (0-ary) logical opcirators tlicimsclvcs. 

-lis, where E is not atomic, will be understood as a standard abbreviation: -iT = _L, = E, 

-'{A aB) = -lA V -iB, -^r\xE = Ux-^E, etc. And E ^ F will be understood as an abbreviation of -^E V F. 

Parentheses will often be omitted — as we just did if there is no danger of ambiguity. When omitting 
parentheses, we assume that -i and the quantifiers have the highest precedence, and has the lowest prece- 
dence. An expression Ei A ... A En, where n > 2, is to be understood as Ei A {E2 A (. . . A (-E„_i A En) . . .)). 
Sometimes we can write this expression for an unspecified n > (rather than n > 2). Such a formula, in the 
case of n = 1, should be understood as simply Ei. Similarly for V , n , U . As for the case of n = 0, A and 
n should be understood as T while V and u as ±. 

Sometimes a formula F will be represented as F{si, . . . , s„), where the Si arc variables. When doing so, 
we do not necessarily mean that each Si has a free occurrence in F, or that every variable occurring free in 
F is among si, . . . , s„. However, it will always be assumed (usually only implicitly) that the Si are pairwise 
distinct, and have no bound occurrences in F. In the context set by the above representation, F{ti, . . . ,r„) 
will mean the result of replacing, in F, each occurrence of each Sj by term Tj. When writing F{ti, . . . , r„), 
it will always be assumed (again, usually only implicitly) that the terms n , . . . , t„ contain no variables that 
have bound occurrences in F, so that there arc no unpleasant collisions of variables when doing replacements. 

Similar — well established in the literature — notational conventions apply to terms. 

A sequent is an expression iJi, o—F, where Ei,...,En (n > 0) and F are formulas. Here 

El, . . . , En is said to be the antecedent of the sequent, and F said to be the succedent. 

By a free (resp. bound) variable of a sequent we shall mean a variable that has a free (resp. bound) 
occurrence in one of the formulas of the sequent. For safety and simplicity, throughout the rest of this paper 
wc assume that the sets of all free and boimd variables of any formula or sequent that wc ever consider 
unless strictly implied otherwise by the context — are disjoint. This restriction, of course, does not yield 
any loss of expressive power, as variables can always be renamed so as to satisfy this condition. 

An interpretation is a pair {U,* ), where U = {U,^ ) is a universe and * is a function that sends: 

• every n-ary function letter / to a function /* : J7" — )• U; 

• every nonlogical n-ary predicate letter p to an n-ary predicate (elementary game) p*{si,. . . , s„) on U 
which does not depend on any variables other than Si, . . . , s„. 

The above uniquely extends to a mapping that sends each term r to a function r*, and each formula F 

to a game F*, by stipulating that: 

1. c* = (any constant c). 

2. s* = s (any variable s). 

3. Where / is an n-ary function letter and ri,...,r„ are terms, (/(n, . . . ,t„))* = /*(Tj*, . . . , r*). 

4. Where ti and T2 are terms, {ti=T2)* is Tj*=r|. 

5. Where p is an n-ary nonlogical predicate letter and n , . . . , r„ are terms, (p(ti , . . . , t„)) * = p* (rj^ , . . . , r* ) . 

6. * commutes with all logical operators, seeing them as the corresponding game operations: _L* = _L, 
{El A ... A En)* =E^a...aE*, (HxE)* = nx{E*), etc. 

While an interpretation is a pair ([/,* ), terminologically and notationally we will usually identify it with 
its second component and write * instead of {U,*), keeping in mind that every such "interpretation" * comes 
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with a fixed universe U, said to be the universe of *. When O is a function letter, a predicate letter, a 
constant or a formula, and O* = W, we say that * interprets O as W. We can also refer to such a W as 
"O under interpretation *". 

When a given formula is represented as F{xi, . . . , Xn), we will typically write F*{xi, . . . , Xn) instead of 
{F{xi, . . . ,Xn)) ■ A similar practice will be used for terms as well. 

We agree that, for a formula F, an interpretation * and an HPM M, whenever we say that is a 
solution of F* or write A4 ^ F*, we mean that is a solution of the (constant) game Hxi . . . n.x„(i^*), 
where exactly the free variables of F, listed according to their lexicographic order. We call 

the above game the Fl-closure of F* , and denote it by r\F* . The V-closure VF* is defined similarly. The 
same notational convention extends from games to formulas. 

Note that, for any given formula F, the Lr component of the game FIF* does not depend on the 
interpretation *. Hence we can safely say "legal run of FIF" without indicating an interpretation applied to 
the formula. 

9 The axiomatization of logic CL12 

Our formiilations rely on some terminology and notation, explained below. 

A formula not containing any choice operators n , U , U — i.e., a formula of the language of classical 
first order logic — is said to be elementary. A sequent is elementary iff all of its formulas are so. 

The elementarization 

lli^ll 

of a formula F is the result of replacing in F all U - and U-subformulas by _L, and all n - and Fl-subformulas 
by T. Note that ||_F|| is (indeed) an elementary formula. The elementarization ||Gi, . . . , G„ o— F|| of a 
sequent Gi, . . . , G„ c>-F is the elementary formula ||Gi|| A ... A ||G„|| \\F\\. 

A sequent is said to be stable iff its elementarization is classically valid. By "classical validity" , in view 
of Godel's completeness theorem, we mean provability in some standard classical first-order calculus with 
constants, function letters and =, where = is treated as the logical identity predicate (so that, say, x=x, 
x = y — >■ {E{x) — >■ E{y)), etc. are provable). 

A surface occurrence of a subformula is an occurrence that is not in the scope of any choice operators. 

We will be using the notation 

F[E] 

to mean a formula F together with some (single) fixed surface occurrence of a subformula E. Using this 
notation sets a context, in which F[H] will mean the result of replacing in F[E] the (fixed) occurrence of E 
by H. Note that here we are talking about some occurrence of E. Only that occurrence gets replaced when 
moving from F[E] to F[H], even if the formula also had some other occurrences of E. 

By a rule (of inference) in this section we mean a binary relation YTZX, where Y = {Yi, . . . ,Yn) is a 
finite sequence of sequents and X is a sequent. Instances of such a relation are schematically written as 

Yl, ■ ■ ■ ,Yn 

X ' 

where Yi. . . . , K„ arc called the premises, and X is called the conclusion. Whenever YTZX holds, we say 
that X follows from Y by TZ. 

Expressions such as G, will usually stand for finite sequences of formulas. The standard meaning 

of an expression such as G, F, K should also be clear. 

THE RULES OF CL12 

CL12 has the six rules listed below, with the following additional conditions/explanations: 

1. In U -Choose and n -Choose, i G {0,1}. 
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2. In U-Choose and Fl-Choose, t is either a constant or a variable with no bound occurrences in the 
premise, and H(t) is the resuh of replacing by t all free occurrences of x in H{x) (rather than vice 
versa) . 

U -Choose n -Choose 

G o- F[H,] G, E[H,], K ^ F 



G ^ F[HoUHi] G, E[HonHi], K ^ F 



□-Choose 

G, E[H{t)], K ^ F 
G, E[\lxH{x)], K F 

Replicate 

G,E,K,Ec^F 
G,E,Kc^F 



U-Choose 

G ^ F[HH)] 
G o- F[UxH{x) 



Wait 

Yi, . . . ,Yn 

(n > 0), where all of the following five conditions are satisfied: 



X 



1. n -Condition: Whenever X has the form G F[Hq n Hi], both of the sequents Go— F[iJo] and 
G o- F[Hi] are among Yi, . . . , y„. 

2. U -Condition: Whenever X has the form G, ^^[i/o LlHi],K o—F, both of the sequents G, £'[i/o], A' F 
and G, E[Hi], K F are among Yi, . . . , y„. 

3. ri-Condition: Whenever X has the form G o— F[nxH{x)], for some variable y not occurring in X, 
the sequent G F[H{y)] is among Yi , . . . , F„ . Here and below, H{y) is the result of replacing by y 
all free occurrences of x in H{x) (rather than vice versa). 

4. U-Condition: Whenever X has the form G, E[UxH{x)], K o— F, for some variable y not occurring 
in X, the sequent G, E[H{y)], K F is among Yi, . . . , Y„. 

5. Stability Condition: X is stable. 

A CL12-proof of a sequent X is a sequence Xi, . . . , Xn of sequents, with X„ = X, such that, each Xi 
follows by one of the rules of CL12 from some (possibly empty in the case of Wait, and certainly empty in 
the case of i = 1) set V of premises such that V C {Xi, . . . , When a CL12-proof of X exists, we say 

that X is provable in CL12, and write CL12 h X . 

A CL12-proof of a formula F will be understood as a CL12-proof of the empty- antecedent sequent 

F. Accordingly, CL12 h F means CL12 h F. 

CL12 is a conservative extension of classical logic (see [17]). Namely, an elementary sequent Ei, . . . , En o— F 
is provable in CL12 iff the formula Ei A ... A En F is valid in the classical sense. It is also a conservative 
extension of the earlier known logic CL3 studied in [18] The latter is nothing but the empty-antecedent 
fragment of CL12 without function letters and identity. 

^An essentially the same logic, under the name L, was in fact known as early as in |12| . 
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Example 9.1 In this example, x is a binary funetion letter and is a unary funetion letter. We write x^y 
and x'^ instead of x (x, y) and '^{x), respectively. The following sequence of sequents is a CL12-proof (of its 
last sequent): 



1. Vx(x'^ = (x X x 

2. Va;(a;^ = (a;xa; 

3. Va;(a;^ = (a;xa; 

4. Va;(a;^ = (a;xa; 

5. Vx(x'^ = (x X x 

6. Va;(x^ = (xxx 



X X 
XX 
XX 
XX 

X X 

XX 
XX 

X X 



r = s'^ 



Wait: (no premises) 



t = sxs, r=txs 
t = sxs, r=txs o— L\y{y = s^) U-Choose: 1 
t = sxs, Uz{z=txs) o- Uy{y = s^) Wait: 2 
t = sxs, ny\Jz{z=txy) (>- \Jy{y = s^) Fl-Choose: 3 

t = sxs, nx\~\yLlz{z^xxy) o— Liy(y = s'^) Fl-Choose: 4 
Uz{z = sx s), nxnyUz{z=xxy) o— Uy{y = s^) Wait: 5 
\~\yLlz{z = sxy)^ nxnyLlz{z = xxy) o— Uy{y = s'^) ri-Choose: 6 
nxnj/Uz(2; = x X y), nxnyUz(z = x X y) o— Liy{y = s^) Fl-Choose: 7 
nxnj/Uz(2: = x X y) Uy(y = .s''') Replicate: 8 



7. Vx(x'^ = (x X X 

8. Vx(x'^ = (x X .X 

9. Vx(x'' = (x X X 

10. Vx(x'^ = (xxx) xx), nxn2/U2;(2: = xx2/) nxUy(?y = .x^) Wait: 9 

Example 9.2 The formula Vxp(x) — > nxp{x) is provable in CL12. It follows from Vxp(x) -^p{y) by Wait. 
The latter, in turn, follows by Wait from the empty set of premises. 

On the other hand, the formula nxp(x) — )-Vxp(x), i.e. VAx^p{x) vVxp(x), in not provable. Indeed, its 
elementarization is _L vVxj3(x), which is not classically valid. Hence \-\x^p{x) vVxp(x) cannot be derived 
by Wait. Replicate can also be dismissed for obvious reasons. This leaves us with U-Choose. But if 
Ux-ip(x) V Vxp(x) is derived by U-Choose, then the premise should be ^p(t) V Vxp(x) for some variable or 
constant t. The latter, however, is a classically non-valid elementary formula and hence unprovable. 

Example 9.3 The formula V\xVAy{p{x) -^p{y)) is provable in CL12 as follows: 

1. p{s)'^p{s) Wait: 

2. L\y{p{s) ^p{y)) U-Choose: 1 

3. nxUy{p{x)^p{y)) Wait: 2 

On the other hand, the formula Uynx(p(x) p{y)) can be seen to be unprovable, even though its classical 
counterpart 3yVx(p(x) -^p{y)) is a classically valid elementary formula and hence provable in CL12. 

Example 9.4 While the formula VxEly(y = /(.x)) is classically valid and hence provable in CL12, its con- 
structive counterpart \~\x\-iy(y = f{x)) can be easily seen to be unprovable. This is no surprise. In view 
of the expected soundness of CL12, provability of nx\-\y(y = f{x)) would imply that every function / is 
computable, which, of course, is not the case. 

Exercise 9.5 To see the resource-consciousness of CL12, show that it does not provep n g — s- (j? n g) A (p n q), 
even though this formula has the form F -> F A F of a classical tautology. Then show that, in contrast, 
CL12 proves the sequent pn q o— (pn q) A {pn q) because, unlike the antecedent of a ^ -combination, the 
antecedent of a o— -combination is reusable (trough Replicate). 

Exercise 9.6 Show that CL12 h UxFly p{x,y) o— Ux(nj/p(x, j/) A Fly p{x,y)) . Then observe that, on the 
other hand, CL12 does not prove any of the formulas 



\Jxnyp{x,y) 
Uxnt/p(x, y) A \-\xnyp{x,y) 
LlxHy p{x,y) A LlxHy p{x,y) A LlxHy p{x,y) 



Ux[\~\y p{x, y) A T\y p{x, y) 
Ux(nyp(x, y) A VAyp{x, y) 
VAx{VAyp{x,y) A VAyp{x,y)) 
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10 The adequacy of logic CL12 



Logical Consequence (LC) is the following rule, with both the premises and the conclusion being formulas: 

From El, ... , En conclude F , as long as CL12 proves Ei, . . . , En °— F. 

When F follows from E'l, . . . , En by this rule, i.e., when CL12 h . . . , £'„ F, we say that is a logical 
consequence of i?i , . . . , En ■ 

The official terms of the language of CL12, identified with their parse trees, are tree-style structures, 
so let us call them tree-terms. A more general and economical way to represent terms, however, is to 
allow merging some or all identical-content nodes in such trees, thus turning them into (directed, acyclic, 
rooted, edge-ordered multi-) graphs. Let us call these unofficial sorts of terms graph-terms. The idea 
of representing linguistic objects in the form of graphs rather than trees is central in the approach called 
cirquent calculus (|161 123j). and has already proven its worth. We once again find the usefulness of that idea 
in our present, complexity-sensitive context. Figure 1 illustrates two terms representing the same polynomial 
function y®, with the term on the right being a tree-term and the term on the left being a graph-term. As 
this example suggests, graph-terms are generally exponentially smaller than the corresponding tree-terms, 
which explains our interest in the former. Figure 1 also makes it unnecessary to formally define graph-terms, 
as their meaning must be perfectly clear after looking at this single example. 




Figure 1: A graph-term and the corresponding tree-term 



By a polynomial graph-term r we shall mean a graph-term not containing (at its leaves) any constants 
other than 0, and not containing (at its internal nodes) any function letters other than ' (unary), -i- (binary) 
and X (binary). The total number k of the variables yi, . . . ,yk occurring in (at the leaves of) r is said to be 
the arity of r. Subsequently we shall only be interested in unary (1-ary) polynomial graph-terms, and will 
typically omit the word "unary" . Terminologically and notationally we shall usually identify such a term t 
with the unary polynomial arithmetical function represented by it under the standard arithmetical interpre- 
tation {x' means x + 1). So, for instance, either term of Figure 1 is a polynomial graph-term, representing 
— and identified with — the function . 

We generalize the above concept of a (unary) polynomial graph-term t to that of a (l,n)-ary explicit 
polynomial functional by allowing the term r to contain, on top of variables and 0, ', +, x, additional 
n {n > Q) unary function letters semantically treated as placeholders for unary arithmetical 

functions. We say that such a r depends on /i, . . . , /„. Replacing /i, . . . , /„ by names gi, . . . , 5„ of some 
particular unary arithmetical functions turns r into the corresponding unary arithmetical function, which we 
shall denote by t((7i, . . . ,5„). For instance, the term of Figure 2 is a (1, 2)-ary explicit polynomial functional. 
Let us denote it by r. Then, if g means "square" and h means "cube", T[g,h) is the unary arithmetical 
function {y'^+y^Y. 



19 



Figure 2: An explicit polynomial functional expressing /2(/i(2/) + /2(j/)) 

We further generalize the concept of a (unary) polynomial graph-term r to that of a (unary) explicit 
polynomial function. The latter is defined as a nonempty sequence (r/j, . .. ,Tf^) of explicit polynomial 
functionals indexed by (associated with) pairwise distinct unary function letters /i , . . . , , where each Tf. 
does not depend on any function letters that are not among /i, . . . , fi-i- Note that this condition makes 

simply a polynomial graph-term, i.e., a (l,0)-ary explicit polynomial functional. (Meta)semantically, 
each index /j here is a name of (represents) a unary arithmetical function, and the corresponding Tf. is a 
definition of that function in terms of 0, + , x and some earlier-defined functions; then r itself is stipulated 
to represent the same function as fk does. Again, a single example would be sufficient to fully clarify the 
denotation of each explicit polynomial function. Consider the explicit polynomial function r = (rj^ , ry^ , T/3), 
where t/j^ and tj^ are the (1, 0)-ary explicit polynomial functionals of Figure 1, and tj^ is the (1, 2)-ary explicit 
polynomial functional of Figure 2. Thus, both /i and /2 represent the same unary polynomial function y^, 
and /3, i.e. r itself, represents the unary polynomial function (y^ + y^)^. Of course, every explicit polynomial 
function can be translated into an equivalent polynomial graph-term, but such a translation can increase 
the size exponentially. For our purposes, polynomial graph-terms (let alone tree-terms) are too inefficient 
means of representing polynomial functions. This explains our preference for explicit polynomial functions 
as a standard way of writing (in our metalanguage) polynomial terms. 

As in the case of polynomial graph-terms, terminologically and notationally we shall usually identify an 
explicit polynomial function r with the unary arithmetical function represented by it. When r is an explicit 
polynomial function and is a r time (resp. space) machine, we say that r is an explicit polynomial 
bound for the time (resp. space) complexity of A4. 

Another auxiliary concept that we are going to rely on in this section and later is that of a generalized 
HPM (GHPM). For a natural number n, an n-ary GHPM is defined in the same way as an HPM, with 
the difference that the former takes n natural numbers as inputs (say, provided on a separate, read-only 
input tape); such inputs are present at the very beginning of the work of the machine and remain unchanged 
throughout it. An ordinary HPM is thus nothing but a 0-ary GHPM. When Ai is an n-ary GHPM and 
ci, . . . , c„ are natural numbers, A4{ci, . . . , c„) denotes the HPM that works just like Ai in the scenario where 
the latter has received ci, . . . , c„ as inputs. We will assume that some reasonable encoding (through natural 
numbers) of GHPMs is fixed. When is a GHPM, '~M~' denotes its code. 

The paper 29 established the soundness of CL12 in the following strong sense: 

Theorem 10.1 (1291) If a formula F is a logical consequence of formulas . . . , En and * is an interpre- 
tation such that each E* (1 < i < n) is computable, then so is F* . Furthermore: 

1. There is an efficient procedure that takes an arbitrary CIjl2-proof of an arbitrary sequent Ei, . . . , i?„ o— 
and constructs a n-ary GHPM Ai, together with a {l,n)-ary explicit polynomial functional t, such 
that, for any interpretation *, any n-ary GHPMs 7Vi,...,7V„ and any unary arithmetical functions 
gi, . . . , gn, if each J\fi{^Afi^, . . . , ^A/'„~') is a gi time solution of E* , then A^('~7Vi~', . . . , ^A/'„~') is a 
r((7i, . . . ,gn) time solution of F* . 

2. The same holds for "space" instead of "time". 

Among the corollaries of the above theorem is that LC preserves both polynomial time and polynomial 
space computabilities, as well as f2-time and f2-space computabilities for any class f2 of functions containing 

®Here and later in similar metacontexts, "efficient" means "polynomial time". 
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all polynomial functions and closed under composition (such as, say, the class of all primitive recursive 
functions). Indeed, to see that LC preserves (for instance) polynomial time computability, assume _F is a 
logical consequence of . . . , En, and the HPMs Afi, . . . ,Afn are polynomial time solutions of . . . , En- 
Of course, every such HPM A/i can as well be seen as an n-ary GHPM which simply ignores its inputs. 
So, each A/i('~A/i^, . . . , '~Afn~') solves Ei. Then, according to Theorem I lO.li we can construct a polynomial 
time solution Ai{'~Afi~', . . . , '~A/'„~') of F. Furthermore, such a solution, together with an explicit polynomial 
bound for its time complexity, can be efficiently extracted from TVi, . . . ,Afn, explicit polynomial bounds for 
their time complexities, and the CL12-proof of . . . , En o— F. 

Remember that, philosophically speaking, computational resources are symmetric to computational prob- 
lems: what is a problem for one player to solve is a resource that the other player can use. Namely, having 
a problem A as a computational resource intuitively means having the ability to successfully solve/win A. 
For instance, as a resource, rixLly^y — x'^) means the ability to tell the square of any number. 

Together with soundness, [29] also established the completeness of CL12. While in the present paper 
we treat o— merely as a syntactic expression separating the two parts of a sequent, in |29] it is seen as an 
operation on games, called ultimate reduction. For simplicity considerations, we do not want to reproduce 
the definition of o— here, which would be necessary to precisely state the completeness result for CL12. We 
shall only point out that, intuitively, Ai, . . . , An o— B is (indeed) the problem of reducing B to Ai, . . . , An 
in the most general intuitive sense. It is similar to Ai A ... A An B, but with the difference that, during 
playing this game, in the former T can use any of the antecedental resources Ai repeatedly, while in the 
latter at most once. The AiS, as resources, are "recyclable", that is. Furthermore, they are "recyclable" 
in the strongest sense possible. Namely, it is not necessary to restart Ai from the beginning every time it 
is reused. T may as well choose to continue Ai — in a new way — from any of the previously reached 
positions. This corresponds to the way of reusage any purely software resource would offer in the presence 
of an advanced operating system and unlimited memory: one can start running process Ai, then fork it at 
any stage thus creating two copies (branches) with a common past but possibly diverging futures, then fork 
any of the new branches again at any time, and so on. See [26) or [29[ for more details and explanations. 

Anyway, the completeness result of [33] for CL12 says that, if there is an HPM that solves the problem 
El, . . . , E* o— F* for any interpretation * — such an *-independent HPM is said to be a logical solution of 
the sequent Ei, . . . , En o— F — then CL12 h Ei, . . . , En ^ F. Furthermore, the same has been shown to 
hold even if HPMs are no longer required to follow algorithmic (let alone efficient) strategies — for instance, 
if they are allowed to use oracles for whatever functions. This result, in view of the intuitions captured by 
the operation o— , eventually translates in [29] into the following thesis relevant to our further purposes: 

Thesis 10.2 (^"29|) Assume Ei, . . . ,En,F are formulas such that there is a *-independent (whatever inter- 
pretation *) intuitive description and justification of a winning strategy for F* , which relies on the availability 
and "recyclability" — in the strongest sense possible — of E^,. . . as computational resources. Then F 
is a logical consequence of . . . , En- 

The above means that the rule of Logical Consequence lives up to its name, and that we can always 
reliably use intuition on games and strategies when reasoning about them in CL12-based systems (where 
LC is a rule of inference) such as CLA4. Namely, once a formula E is proven in such a system, it can be 
treated as a recyclable resource whose unlimited availability can be safely assumed for any new strategies 
that we construct. More precisely, a new strategy may assume that there is an (external) provider of the 
resource E (call it an oracle for E if you prefer), capable of successfully playing E for (against) us any time 
and in any number of sessions, whether we choose those sessions to evolve in a parallel or a branched/forked 
fashion. 

Example 10.3 Imagine a CL12-based applied formal theory, in which we have already proven two facts: 
Va;(a;'^ = (x X x) X a;) (the meaning of "cube" in terms of multiplication) and \~\x\~\y\-iz{z=xxy) (the com- 
putability of multiplication), and now we want to derive r\x\-\y{y = x^) (the computability of "cube"). This 
is how we can reason to justify nx\-\y{y = x^): 

Consider any s (selected by Environment for x in nxL\y(y = x^) ). We need to find . Using the 
resource VAxVAyVAz{z = x><y) twice, we first find the value t of sx-s, and then the value r oftx-s. 
According to yx{x^ = (xxx) xx), such an r is the sought s'^ . 
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Thesis [TO.21 promises that the above intuitive argument will be translatable into a CL12-proof of 



Vx(a;'^ = (x X a;) X x) , \~\x\~\y\-\z{z = x>^y) o— \~\xUy{y = x^) 

(and hence the succedent will be derivable in the theory by LC as the formulas of the antecedent are already 
proven). Such a proof indeed exists — see Example 19. II 

CL12 — more precisely, the associated rule of LC — is adequate because, on one hand, by Theorem 
110. 1[ it is sound for a wide spectrum of applied theories, including — but not limited to — polynomial- 
time-oriented ones, and, on the other hand, by Thesis [TO. 2 [ it is as strong as a logical rule of inference could 
possibly be. 

11 Theory CLA4 introduced 

The language of CLA4, whose formulas more specifically can be referred to as CLA4-formulas, is obtained 
from the language of CL12 by removing all nonlogical predicate letters (thus only leaving the logical predicate 
letter =), removing all constants but 0, and removing all but three function letters, which are: 

• successor, unary. We will write r' for successor{T). 

• sum, binary. We will write T1+T2 for sum{Ti,T2). 

• product, binary. We will write ti xr2 for product{Ti,T2). 

Thus, the language of CLA4 extends that of Peano arithmetic PA (sec, for example, [ll j through 
adding to it n , U , U, Formulas that have no free occurrences of variables are said to be sentences. 

The concept of an interpretation explained earlier can now be restricted to interpretations that are 
only defined on ', -h and x , as the present language has no other nonlogical function or predicate letters. 
Of such interpretations, the standard interpretation ^ is the one whose universe is the ideal universe 
{0, 1, 10, 11, 100, . . .}, with its elements identified with the corresponding natural numbers, and which inter- 
prets ' as the standard successor (a; + l) function, interprets + as the sum function, and interprets x as the 
product function. For a CLA4- formula F, the standard interpretation of F is the game F\ which we 
typically write simply as F unless doing so may cause ambiguity. 

Where r is a term, we will be using rO and rl as abbreviations for the terms 0"xr and (0"xt)', 
respectively. The choice of this notation is related to the fact that, given any natural number a, the binary 
representation of 0" x a (i.e., of 2a) is nothing but the binary representation of a with a "0" added on its right. 
Similarly, the binary representation of (0"xa)' is nothing but the binary representation of a with a "1" 
added to it. Of course, here an exception is the case a = 0. It can be made an ordinary case by assuming that 
adding any number of Os at the beginning of a binary numeral b results in a legitimate numeral representing 
the same number as b does. 

The number aO (i.e. 2a) will be said to be the binary 0-successor of a, and al (i.e. 2a + 1) said to 
be the binary 1-successor of a; in turn, we can refer to a as the binary predecessor of aO and al. As 
for a', we can refer to it as the unary successor of a, and refer to a as the unary predecessor of a'. 
Every number has a binary predecessor, and every number except has a unary predecessor. Note that the 
binary predecessor of a number is the result of deleting the last digit (if present) in its binary representation. 
Remember that the string for us is just another name of the empty string e representing the number zero. 
So, and 1 are no exceptions to the above rule: deleting the last (and only) digit of 1 results in e; and 
"deleting the last digit" in 0, i.e. in e, again results in e, as there is no digit to delete. 

The language of PA is known to be very expressive, despite its nonlogical vocabulary officially being 
limited to only 0,', -1-, x. Specifically, it allows us to express, in a certain standard way, all recursive 
functions and relations, and beyond. Relying on the common knowledge of the power of the language of 
PA, we will be using standard expressions such as x<y, y>x, etc. in formulas as abbreviations of the 
corresponding proper expressions of the language. In our metalanguage, |a;| will refer to the length of the 
binary numeral for the number represented by x. In other words, \x\= \log2{x + l)~\ {\y~\ means the smallest 
integer z with y<z). Expressions like |a:;| we refer to as pseudoterms — officially they are not terms of 
the object language, but in many contexts still can be treated as such. Another example of a pseudoterm 
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is 2^ with its standard meaning. So, when we write, say, "\x\<y", it is officially to be understood as an 
abbreviation of a standard formula of PA saying that \x\ does not exceed y. 

For a variable x, by a polynomial sizebound for x we shall mean a standard formula of the language of 
PA saying that \x\ <r(|yi|, . . . , \yn\), where yi, . . . , y„ are any variables different from x, and T(|yi|, . . . , |j/„|) 
is any (0, ', + , x )-combination of |yi|, ■ ■ ■ , |j/n|- For instance, |a;|<|y| + |2;| is a polynomial sizebound for x, 
which is a formula of PA saying that the size of x does not exceed the sum of the sizes of y and z. Now, we 
say that a CLA4-formula F is polynomially bounded iff: 

• Whenever nxG{x) is a subformula of F, G{x) has the form S{x) —>■ H{x), where S{x) is a polynomial 
sizebound for x. 

• Whenever UxG{x) is a subformula of F, G{x) has the form S{x) A H{x), where S{x) is a polynomial 
sizebound for x. 

Remember that, where -F is a formula, V-F means the V-closure of F, i.e., Vxi . . . Vx^-F, where xi, . . . ,Xn 
are the free variables of F. Similarly for 3F, FIF, UF. 
The axioms of CLA4 are: 

Axiom 1: Vx{0^x') 

Axiom 2: \/x\/y{x' = y' x = y) 

Axiom 3: \/x{x + = x) 

Axiom 4: \fx\/y(^x + y' = {x + y)') 

Axiom 5: Va;(a;xO = 0) 

Axiom 6: \fx\/y(^xxy' = {xxy) + x) 

Axiom 7: v(f(0) A Va;(F(x) ^ F{x')) VxF(x)) for each elementary formula F{x) 

Axiom 8: nxUy{y = x') 
Axiom 9: nx\-iy{y = xO) 

All of the above are thus nonlogical axioms (CLA4 has no logical axioms). Note that the overall number 
of axioms is infinite rather than nine, because Axiom 7 is not a particular sentence but a scheme of sentences. 
Axioms 1-7 are nothing but Peano axioms — the nonlogical axioms of PA. CLA4 thus only has two extra- 
Peano axioms: Axiom 8 and Axiom 9. In view of the forthcoming soundness theorem for CLA4, Axiom 
8 says that the unary successor function is polynomial time computable, and Axiom 9 says the same about 
the binary 0-successor function. 

As for the rules of inference, CLA4 has a single logical rule, which is our old friend Logical Conse- 
quence, and a single nonlogical rule, which we call CLA4-Induction. The latter is 

n(F(0)) n(F(x) ->F(a;0)) U{F{x) ^ F{xl)) 

n(F(^j) ' 

where F{x) is any polynomially hounded formula. 

Here we shall say that n(F(0)) is the basis of induction, T\{F{x) -> F{xO)) is the left inductive step, 
and n(F(a;) -^F{xl)) is the right inductive step. The variable x has a special status here, and we say 
that the conclusion follows from the premises by CLA4-Induction on x. A reader familiar with Buss's 
[B] bounded arithmetic will notice a resemblance between the FIND axiom scheme of the latter and our 
CLA4-Induction rule, even though the two beasts operate in very different environments, of course. 

A sentence F is considered provable in CLA4 iff there is a sequence of sentences, called a CLA4-proof 
of F, where each sentence is either an axiom, or follows from some previous sentences by one of the two 
rules of inference, and where the last sentence is F. An extended CLA4-proof is defined in the same way, 
only, with the additional requirement that each application of LC should come together with an attached 
CL12-proof of the corresponding sequent. With some fixed, effective, sound and complete axiomatization L 
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of classical first order logic in mind, a superextended CLA4-proof is an extended CLA4-proof with the 
additional requirement that every application of Wait in the justification of a CL12-derivation in it comes 
with an L-proof of the elenientarization of the conclusion. Note that the property of being a superextended 
proof is (efficiently) decidable, while the properties of being an extended proof or just a proof are only 
recursively enumerable. We write CLA4 h F to say that F is provable (has a proof) in CLA4, and 
CLA4 [/ F to say the opposite. 

Generally, as in the above definition of provability and proofs, in CLA4 we will only be interested in 
proving sentences^ So, for technical convenience, we agree that, from now on, whenever we write CLA4 h F 
(or say "F is provable") for a non-sentence F, it simply means that CLA4 h HF. Similarly, when we say 
that a given strategy solves F, it is to be understood as that the strategy solves FIF. Similarly, when we say 
that F is a logical consequence of Fi, . . . , F„, what we typically mean is that FIF is a logical consequence of 
riFi , . . . , nF„. To summarize, in the context of CLA4, any formula with free variables should be understood 
as its ri-closure. An exception is when F{xi, . . . , x„) is an elementary formula and we say that F(ci, . . . , c„) 
is true (whatever constants ci, . . . ,Cn). This is to be understood as that the V-closure VF(ci, . . . ,c„) of 
F(ci, . . . , c„) is true (in the standard model), for "truth" is only meaningful for elementary formulas (which 
riF generally would not be). An important fact on which we will often rely yet only implicitly so, is that the 
sentence VF — >■ FIF or the closed sequent VF FIF is (always) CL12-provable. In view of the soundness of 
CL12, this means that whenever (F is elementary and) VF is true, FIF is automatically won by a strategy 
that does nothing. 

Example 11.1 The following sequence is a proof of nxLly{y = xl), i.e. of nx\-iy{y= {xO)'^ — the sentence 
saying that the binary 1-successor function is computable: 

I. na;Uy(y = a;') Axiom 8 

II. nx\-iy{y = xO) Axiom 9 

III. nxUy{y={xO)') LC: I,II 

An extended version of the above proof would have to include a justification for step III where LC was 
used, such as the following one: 

1. t = r', r = sO o- t = {sO)' Wait: 

2. t = r', r = sO o- Uy(y=(sO)') U-Choose: 1 

3. Uy{y = r'), r = sO o- Uy(y=(sO)') Wait: 2 

4. nxUy{y = x'), r = sO o- Ui/(y=(sO)') Fl-Choose: 3 

5. r\xL\y{y = x'), L\y{y = sO) o- Uy(y=(sO)') Wait: 4 

6. r\xL\y{y = x'), r\xL\y{y = xO) o- L\y{y = {sO)') Fl-Choose: 5 

7. r\xL\y{y = x'), r\xL\y{y = xO) o- r\xL\y{y={xO)') Wait: 

As we just saw, (additionally) justifying an application of LC takes more space than the (non-extended) 
proof itself. And this would be a typical case for CLA4-proofs. Luckily, however, there is no real need to 
formally justify LC. Firstly, this is so because CL12 is an analytic system, and proof-search in it is a routine 
(even if sometimes long) syntactic exercise. Secondly, in view of Thesis 110. 2[ there is no need to generate 
formal CL12-proofs anyway: instead, we can use intuition on games and strategies. In the present case, 
the whole (III+7)-step extended formal proof can be replaced by a short intuitive argument in the following 
style: 

Consider any s chosen by Environment for x. We need to compute (sO)' . Using Axiom 9, we 
find the value r of sO. Then, using Axiom 8, we find the value t of r' . Such a t is what we are 
looking for. 

Furthermore, as we agreed to understand a proof of a non-sentence F as a proof of its H-closure HF, 
the above argument can be shortened by considering simply L\y{y = xl) instead of nxL\y(y = xl). This would 
allow us to skip the phrase "Consider any s chosen by Environment for x" and the necessity to introduce 

'^In case we do not insist that every formula in an CLA4-proof be a sentence, one could show that, if F is not a sentence, 
it is provable (in this relaxed sense) if and only if its Fl -closure is so, anyway. 
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the; now name/variable s. Instead, wc; can Hiniply say "Consider any .t", implicitly letting x itself serve as a 
variable for the value chosen by Environment for x when playing the Fl-closure of the game. Sometimes we 
can go even lazier and skip the phrase "Consider any x" altogether. 

In view of the following fact, an alternative way to present CLA4 would be to delete Axioms 1-7 and, 
instead, declare all (closed) theorems of PA to be axioms of CLA4 along with Axioms 8 and 9: 

Fact 11.2 Every (elementary CLA4-^ sentence provable in PA is also provable in CLA4. 

Proof. Suppose (the classical-logic-based) PA proves F. By the deduction theorem for classical logic 
this means that, for some nonlogical axioms Hi,. . . , Hn of PA, the formula Hi A ... A F is provable 
in classical first order logic. Hcmcc; Hi A ... A Hn o— F is provable in CL12 by Wait from the empty set 
of premises. Hence F is a logical consequence of the Peano axioms Hi,. . . , Hn of CLA4 and, as such, is 
provable by LC. ■ 



The above fact, on which we will be implicitly relying in the sequel, allows us to construct "lazy" CLA4- 
proofs where some steps can be justified by simply indicating their provability in PA. That is, we will treat 
theorems of PA as if they were axioms of CLA4. As PA is well known and well studied, we safely assume 
that the reader has a good feel for what it can prove, so we do not usually further justify PA- provability 
claims that we make. A reader less familiar with PA, can take it as a rule of thumb that, despite Godel's 
incompleteness theorems, PA proves every true number-theoretic fact that a contemporary high school 
student can establish, or that mankind was or could be aware of before 1931. 

Example 11.3 The following sequence is a lazy proof of na;(a; = U a;?^0) — the formula saying that the 

"zoronoss" predicate is decidable: 

I. = 0u05^0 LC: 

II. Va;(a; = 0^a;O = 0) PA 

III. Vx(a;^0-*-a;O^0) PA 

IV. na;(a; = 0ua;#0-*-a;O = 0ua;O^0) LC: II,III 

V. yx{xl^O) PA 

VL nx(x = 0ux^0^xl = 0uxl5^0) LC: V 
VII. nx(.x = Oua;#0) CLA4-Induction: I,IV,VI 

An extended version of the above proof will include the following three additional justifications (CL12- 
proofs): 

A justification for Step I: 

1. = Wait: 

2. = OuO#0 U -Choose: 1 



s=0 

s = 
s^O 
s#0 



A justification for Step IV: 

1. Vx{x=0^xO = 0), yx{x^0^xO^0) 

2. Vx(x = 0^xO = 0), Vx{x^0^xO^0) 

3. \/x{x = 0^xO = 0), \/x{x^0^xO^0) 

4. \/x{x = 0^xO = 0), Vx(x5^0-^xO#0) 

5. Va;(a; = 0^-a;O = 0), \/x{x^O ^ xO^O) 

6. Va;(a; = 0^-a;O = 0), \/x{x^O ^ xO^O) 

A justification for Step VI: 

1. Vx(a;1^0) s = 0-)-sl#0 Wait: 

2. Vx(xl#0) <^ s#0->-sl#0 Wait: 

3. yx{xl^O) s = OUs#0^-sl#0 Wait: 1,2 



sO = Wait: 

sO = 0UsO#0 U -Choose: 1 

sOt^O Wait: 

sO = 0usO7i0 U -Choose: 3 
s = 0Us#0^-sO = 0UsO#0 Wait: 2,4 
na;(x = 0us#0->-a;O = 0ua;O#0) Wait: 5 
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4. \/x{xl^O) o- s = Ous^O^ sl = Ousl^O U-Choose: 3 

5. \/x{xl^O) o- na;(x = Oua;5^0-5>a;l=Oua;l5^0) Wait: 4 

But, again, in the sequel we will not generate formal (even if lazy) proofs in the above style but, in- 
stead, limit ourselves to informal arguments within CLA4. Below we illustrate such an argument for the 
present case. Further, as explained in the previous example, we prefer to deal with x = 0\J x^^O rather than 
nx{x = Ux^O), and do not explicitly say "consider any value x chosen for the variable x by Environment". 

We prove x = U x^^O by CIj12- Induction on x. 

The Basis = 0u05^0 of induction is straightforward: it is solved by choosing the left U -disjunct. 

Solving the left inductive step x = Oux?sO— 5-xO = 0u.tO5^0 means solving the consequent using a single 
copy of the antecedent as a resource. From PA, we know that xO = iff x = 0. And whether x = or not we 
can find out using the resource x = U x^O. So, we can tell whether xO = or (u ) xO^O, as desired. 

The right inductive step a:: = OLJa;?iO^'a;l = OLJxl?'0 is solved by simply choosing the right Li -disjunct in 
the consequent which, by PA, is true. 

In the future, our reliance on PA may not always be explicit as it was in the above informal argu- 
ment. Further, as we advance, our reliance on some basic nonelementary facts such as the just-proven 
nx(a; = Ux5^0) may increasingly become only implicit. 

Why did not we use the following, much simpler intuitive argument instead of the above one? 

To solve x = U x^O, see if x (the constant chosen by Environment for x) is or not. If yes, 
choose the left U -disjunct; otherwise choose the right U -disjunct. 

The above argument is not valid, in the sense that it is not "purely logical", and hence Thesis [TO. 21 does 
not guarantee that it will be translatable into a formal proof. Namely, in being confident that the above 
strategy wins the game, we rely on the extra-logical knowledge of the fact that different constants are names 
of different objects. This is indeed so for the standard model of arithmetic. But in some other models it is 
quite possible that, say, both constants and 10 are names for the same object of the universe. Then, the 
above strategy prescribes to choose the false 10^0 in the corresponding scenario. 

Thus, na:(a; = U a;?^0), while provable in CLA4, is not logically valid, that is, is not provable in CL12. 
The same applies to the more general principle nxny{x = y U x^y), whose CLA4-provability is shown later 
in Section [T2l 

When a formula F{xi, . . . ,Xn) is a standard (in whatever informal sense) representation of an n-ary 
predicate p and CLA4 h n(i^(2;i, . . . , x„) U -iF(a;i, . . . , a;„)) , we say that p is CLA4-provably decid- 
able. Similarly, when F{y,xi, . . . ,Xn) is a standard representation of the graph of an n-ary function / 
and CLA4 h nUi/i^(y, xi, . . . , a;„), we say that / is CLA4-provably computable. Since CLA4 is the 
only system of clarithmetic dealt with in this paper, the prefix "CLA4" before "provably" can be safely 
omitted. So, for instance. Example 111.31 established the provable decidability of the "zeroness" predicate, 
and Example 111.11 established the provable computability of the binary 1-successor function. The same ter- 
minology extends to partially defined functions as well. For instance, the later-proven Fact 112.31 shows that 
CLA4 h T\x{x^Q -^'L\y{x = y'y) . We understand this as the provable computability of the (partial) unary 
predecessor function. 

Exercise 11.4 Let Even{x) be an abbreviation of 3z{x = z + z), and Odd{x) be an abbreviation of -^Even{x). 

Find a lazy CLA4-proof of \/x(^Even{x) U Odd{x) VAy(^Even{x + y) U Odd{x-\-y))^ . Hint: Relying on the 

PA-provable fact that xO is always even and xl is always odd, by CLA4-Induction prove nx(^Even{x) U Odd{x)^ . 
The target sentence is a logical consequence of the latter and the PA-provable fact that the sum of two num- 
bers is even iff both numbers are even or both are odd. 

By an arithmetical problem in this paper we mean a game A such that, for some sentence F of 
the language of CLA4, A = F^^ (remember that ^ is the standard interpretation). Such a sentence F is 
said a representation of A. We say that an arithmetical problem A is provable in CLA4 iff it has a 
CLA4-provablc representation. In these terms, a central result of the present paper sounds as follows: 

Theorem 11.5 An arithmetical problem has a polynomial time solution iff it is provable in CLA4. 
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Furthermore, there is an efficient procedure that takes an arbitrary extended CLA4-proo/ of an arbitrary 
sentence X and constructs a solution of X (of X\ that is) together with an explicit polynomial bound for 
its time complexity. 

Proof. The soundness ( "if" ) part of this theorem will be proven in Section [121 a-nd the completeness 
("only if") part in Section [HI ■ 

12 Some more taste of CLA4 

In this section we establish several CLA4-provability facts. In view of the soundness of CLA4, each such 
fact tells us about the efhcient solvability of the associated number-theoretic computational problem. 

As mentioned, the present work has been written not merely as a research paper but also as an advanced 
tutorial on CoL-based applied theories. The series of proofs given in this section can be treated as exercises 
aimed at developing the reader's feel for CoL-based systems and CLA4 in particular. But these proofs also 
provide certain necessary results relied upon later, in our proof of the extensional completeness of CLA4. 

As noted earlier, we shall exclusively rely on informal reasoning in CLA4, remembering that behind 
every such piece of reasoning is a formal CLA4-proof. 

Fact 12.1 CLA4 h Uy{y = \x\) (i.e., CLA4 h nxUy{y=\x\)). 

Proof. Argue in CLA4. By CLA4-Induction on x, we first want to prove LJy(|y| < \x\ A ?/ = |a;|). 

The basis U?/(|?/| < |0| A y = |0|) is solved by selecting for y. Such a move brings the game down to 
|0| <0 A 0= |0|. From PA, we know that the latter is true. So, we win. 

The left inductive step is U?/(|?/| < |a;| A ?/= |a;|) ^> Uy(|j/| < |xO| A y= |xO|). Using Example lll.3[ we figure 
our whether a:: = or not. If x = Q, then (we know from PA that) |a;0| = 0, so we win the game by selecting 
for y in the consequent. Now suppose x^^Q. We wait till Environment selects a constant a for y in the 
antecedent]^ (if this does not happen, we win). Then, using Axiom 8, we compute the value (constant) b with 
b = a', and choose b for y in the consequent. We win because, from PA, we know that when x is not 0, the 
resulting position |a| < A a= |6| < |a;0| A 6= |xO|, i.e. |a| < |x| A a= |x| ^« |a'| < |a;0| A a' = |a;0| (whatever 
the value of x is) is true. The right inductive step is similar but simpler, as we do not need to separately 
consider the case of a; = 0. 

So, we know how to win (the Fl-closure of) U?/(|?/| < |x| A y = |a::|). But then, of course, ignoring the 
|j/|<|a;| conjunct, we also know how to win (the Fl-closure of the weaker) Uj/(j/ = |x|). Putting it in pre- 
cise terms, na::U?/(?/= |a::|) is an (easy) logical consequence of nxU?/(|j/| < Ay=|a;|) — that is, the sequent 
na;U?;(|y|<|a;| A?/=|x|) c^na;Uy(y = |a;|) is (easily) provable in CLl 2. ■ 

Compare the Fl-closures of the following formulas: 



All four sentences "say the same" about the arbitrary (□) number represented by x, but in different ways. 
([5]) is the weakest, least informative, of the four. It says that x has a binary predecessor y, and that x is 
even (i.e., is the binary 0-successor of its binary predecessor) or odd (i.e., is the binary 1-successor of its 
binary predecessor). This is an almost trivial piece of information. Q and ([7]) carry stronger information. 
According to ([6|), x not just merely has a binary predecessor y, but such a predecessor can be actually and 
efficiently found. ([7|) strengthens ^ in another way. It says that x can be efficiently determined to be even 

^In informal arguments like this, we usually do not try to be consistent in using different metavariables for constants and 
variables. Notice that the status of x in the present informal argument is also "constant" (chosen by Environment for the 
variable x) just like the status of a but we, out of reluctance to introduce new names, continue using the expression "x" for it, 
even though in earlier sections we tried to reserve the metanames x,y, z, . . . (as opposed to a, b,c, . . .) for variables rather than 
constants. 



3y{x 
Uy(x 
3y{x 
\Jy{x 



yOW X 
yOy X 
yOUx 
yOUx 



2/1) 



(5) 
(6) 

(7) 
(8) 
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or odd. As for ([5]), it is the strongest. It carries two pieces of good news at once: we can efficiently find 
the binary predecessor y oi x and, simultaneously, tell whether x is even or odd. According to the following 
fact, ^ is provable. As we may guess, so are the weaker (O, ([SJ, ([5]). 

Fact 12.2 CLA4 h Uy(a: = yOUa; = ?;l). 

Proof. Argue in CLA4. By CLA4-Induction on x, we first want to prove Uy (|y| < |a;| A {x = yO U x = yl)) . 

The basis Ui;(|i;|<|0| A (0 = yOuO = yl)) is obviously solved by selecting for y and then choosing the 
left U -disjunct, which results in the true (according to PA) sentence |0| < |0| A = 0O. The left inductive 
step Uy{x = yOUx = yl) ^\-iy{xO = yOLixO = yl) is solved by selecting for y the same constant as the one 
selected by Environment for x, and then choosing the left U -disjunct. Similarly, the right inductive step 
\-iy{x = yO U x = yl) — > Uy{xl = yO U xl = yl) is solved by selecting for y the same constant as the one selected 
by Environment for x, and then choosing the right U -disjunct. 

Now, L\y{x = yO U x = yl) is a straightforward logical consequence of LJy(|?/| < |a;| A {x = yO \Jx = yl)). ■ 



The preceding fact established the provable computability of binary predecessor. The following fact does 
the same for unary predecessor: 

Fact 12.3 CLA4'r x^O^\Jy{x = y'). 

Proof. Argue in CLA4. By CLA4-Induction on x, we want to prove x^O — > Uydyj < |a;| A x = y'), from 
which the target x^O — > \-\y{x = y') follows immediately by LC. 

The basis O^^O — ;> LJy(|y| < |0| A = y') is solved trivially by a strategy that does nothing. A win is guar- 
anteed because the antecedent is false. 

The left inductive step is {x^O^ LJj/(|y| < \x\ Ax = y')) -j> (xO^O^ LJy(|j/| < \xO\ A xO = y')). If xOt^O (and 
if not, we win the game), then — according to PA — x^O. So, Environment will have to choose a constant 
a for y in the antecedent, or else it loses. We may assume that a is (indeed) the unary predecessor of x, or 
else, again, having chosen a wrong a, Environment loses. We know from PA that then the unary predecessor 
b of xO equals al, and that |fe|<|a;0|. This b can be computed using (the resource provided by) Example 
111.11 We choose b for y in the consequent and win. 

The right inductive step (x^^O — j- LJ7/(|j/| <\x\ Ax = y')) ^ [xl^O Uydyj < |a;l| A a;l = y')) is even easier 
to handle. Prom PA, the unary predecessor of xl is xO, and |a:0|<[a;l|. Using Axiom 9, we compute the 
value b of xO and choose b for y in the consequent. ■ 



Fact 12.4 CLA4 h L\z{z = x + y). 

Proof. Argue in CLA4. By CLA4-Induction on x, we want to prove 

ny(|?;|<|<|^Uz(|z|<|a:;| + |?;| Az = x + ?/)), 

from which, together with the PA-provable fact Vy(|y| < |y|), the target \-iz{z = x + y) follows by LC. 

The basis is Flydyl < |i| — >• Uz(|2;| < |0| + A z = + ?/)) , which (as always) we prefer to simply write as 
\y\ < \t\ LJz(|z| < |0| + \y\ A z = + y). It is won by selecting (the value of) y for z, because we know, from PA, 
that the resulting \y\ < \t\ ^ \y\ < \0\ + \y\ Ay = + y) is true. 

In inductive steps, we will rely on the fact that PA proves (the V-closures of) the following formulas: 

sO + rO = (s + r)0, i.e., 2s + 2r = 2(s + r); (9) 

sO + rl = {s + r)l, i.e., 2s + (2r + 1) = 2(s + r) + 1; (10) 

sl + rO = {s + r)l, i.e., (2s + l) + 2r = 2(s + r) + l; (11) 

sl + rl = ((s + r)l)', i.e., (2s + 1) + (2r + l) = (2(s + r) + 1) + 1. (12) 

The left inductive step is 

r\y(^\y\<\t\ ~^ \-lz{\z\ <\x\ + \y\ A z = x + y)) ^r\y(^\y\<\t\ ^ LJz(|z| <\xO\ + \y\ A z = xO + y)) . (13) 
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To solve it, we wait till Environment chooses a constant a for y in the consequent, after which (|13p will be 
brought down to 

ny(|y| < |i| ^> Uz(|z| < |a;| + |y| A z = x + 2/)) (|a| < |t| ^> Uz(|z| < |a;0| + |a| A z = xO + a)). (14) 

Using Fact 112.21 we find the binary predecessor & of a, for which we will also know whether a = bO or ("or" in 
the strong sense of U ) a = bl. We specify y as & in the antecedent of and wait till Environment selects 
a value c for z there. 

If a = &0, the game by now will be brought down to 

(|6|< |t| (|c|< + Ac=x + b)) (\bO\<\t\ Uz(|z| <|a;0| + |60| A z = xO + bO)). 

Using Axiom 9, we compute the value d of cO, and specify z as d in the consequent. The resulting position 

< |t| (|c| < |a;| + l&l A c = a; + 6)) ^ (|&0| < |t| ^ |cO| < |a;0| + |60| A cO = 2;0 + foo), 

in view of (0) (and certain additional, straightforward PA-provable facts), is true, so we win. 
Quite similarly, if a = bl, the game by now will be brought down to 

(|6|< |t| (|c|< |x| + |fo| Ac=x + b)) (|6l|< |i| Uz(|z| <|a;0| + |&l| A z = xO + bl)). 

Using Example 111.11 we compute the value d of cl, and specify z as d in the consequent. The resulting 
position 

(|6| <|<| (|c| < |a;| + |6| Ac = a; + 6)) {\bl\<\t\ |cl| < |a;0| + |&l| A cl = xO + bl), 

in view of (jlOp . is true, so we win. 

The right inductive step will be handled in a similar way, only relying on (|lll) and ([T^ instead of © 
and (dni. ■ 

Fact 12.5 CLA4'r \Jz{z = xxy). 

Proof. The general scheme of proof here is very similar to the one employed in the proof of Fact 112. 4[ 
and details are left as an exercise to the reader. Here we shall only point out that, the four basic PA-provable 
facts that play the same role here as facts (|9|)- (|12p in the proof of Fact 112.41 are the following: 

sO X rO = (s X r)00, i.e., 2s x 2r = 4(s x r); 

sOxrl = (sxr)00 + sO, i.e., 2sx (2r + l)=4(sxr) + 2s; 

si xrO = (sxr)00 + rO, i.e., (2s + l) x2r = 4(sxr) + 2r; 

slxrl = (sxr)00 + (s + r)l, i.e., (2s + l) x (2r + l) = 4(sxr) + 2(s + r) + l. 

Also, where the previous proof relied on Axiom 9 and Example 1 11. 11 the present proof, in addition, will rely 
on Fact [mi ■ 

The following fact establishes the provable computability of all (polynomial) functions represented through 
terms: 

Fact 12.6 For any term t (not containing z), CLA4 h Uz(z=t). 

Proof. We prove this fact by (meta)induction on the complexity of r. The base cases are those of r 
being the constant or a variable x. Both of the corresponding sentences Uz(z = 0) and VAx\-\z{z = x) are 
provable in CL12 and hence also in CLA4. Next, assume r is 9' . By the induction hypothesis, CLA4 
proves 'l\z{z = 9). CLA4 also proves Uj/(y = a;') (Axiom 8). The desired Uz(z = 0') is a logical consequence 
of these two. The remaining cases of r being 6i +62 or 9i x 82 are handled in a similar way, relying on Facts 
112.41 and ri2. 51 respectively. ■ 

The formula of the following fact, as a computational problem, is about finding the (nonnegative) differ- 
ence z between any two numbers x and y and then telling whether this difference is x-y or y-x. 
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Fact 12.7 CLA4'r Uz{x = y + zuy = x + z). 



Proof. Argue in CLA4. By CLA4-Induction on x, we want to show 

n?;(|?;|<|t| ^Uz(|z|<|a;| + |2/| A ix = y + zUy = x + z))y (15) 

The basis \y\ < \t\ — 5> LJz(|z| < |0| + \y\ A {0 = y + zLi y = + z)) is obviousljH solved by the strategy that chooses 
the value of y for the variable z and then selects the right U -disjunct. 
To solve the left inductive step 

r\y(\y\<\t\-^L\z[\z\<\x\ + \y\ A{x = y + zUy = x + z))) ^ 

} \ (16) 

ny(\y\<\t\-^\Jz(^\z\<\xO\ + \y\/\{xO = y + zUy = xO + z)) 



we wait till Environment specifies a constant a for y in the consequent. Then, using Fact 112.^ we compute 
the binary predecessor b of a, and also figure out whether a = bO or ( U ) a = bl. 

Case 1: a = 60. We specify i/ as 6 in the antecedent of (fTB|) . this way forcing Environment to choose a 
constant c for z there (unless \b\ < \t\ is false, in which case \a\ < \t\ is also false and we win), and also choose 
one of the disjuncts of x = b + cub=x + c. Using Axiom 9, we calculate the value d of cO, and specify z as c? 
in the consequent of (|16p . Further, if Environment has chosen x = b + c in the antecedent, we choose the left 
U -disjunct in the consequent. This means that, by now, (jl6p is brought down to 

{\b\<\t\ -> |c|< |a:| + |6| Aa; = 5 + c) (|6o| <t ^ |cO| < |a;0| + |6o| A xO = 60 + cO). 

From PA, the above is true, so we win. Similarly, if Environment has chosen b = x + c in the antecedent of 
(|16p . then we choose the right U -disjunct in the consequent, and again win. 

Case 2: a = bl. Again, we specify y as 6 in the antecedent of this way forcing Environment to choose 
a constant c for z there, and also to choose one of the disjuncts of x = b + c U b=x + c. 

Subcase 2.1: b = x + c is chosen. Using Example I ll.li we calculate the value d of cl, specify z as d in the 
consequent of (|16p. and choose the right U -disjunct there. By now, (|16p is brought down to 

(|6|<|t| |c|<|x| + |5| A6 = a:: + c)^ (|6l|<|t| ^ |cl| < |a:0| + A6l = a;0 + cl). 

According to PA, the above is true, so we win. 

Subcase 2.2: a:: = 6 + c is chosen. First, using Example 111. 3[ we figure our whether c=0 or (u) c^Q. 

Subsubcase 2.2.1: c = 0. Using Axiom 8, we calculate the value d of 0', specify z as d in the consequent 
of IK]), and choose the right U -disjunct there. This means that, by now, (fT6|) is brought down to 

(|5|<|t| -> |0|<|a:| + |6| Aa; = 6 + 0)-> (|6l|<|i| -> |0'| < |xO| + A 6i = :eO + 0') 

which, by PA, is true, so we win. 

Subsubcase 2.2.2: c^Q. Using Axiom 9 and Fact 112.51 we calculate d with cO = o?', i.e. d=cO-l, specify 
z as c? in the consequent of ((T6)) . and choose the left U -disjunct there. This means that, by now, (|16p is 
brought down to the following true (by PA) position, so we win: 

(|6|<|t| ^ |c|<|a;| + |5| Aa; = 6 + c) ^ (|6l|<|t| ^ |cO - 1| < |xO| + |5l| A xO = 6l + (cO- 1)) . 

The right inductive step is handled in a rather similar way, and it is left as an exercise. 
Thus, we have proven (jl5p . Now, the target sentence T\xVAy'L\z{x = y + z U y = x + z)^ can be easily seen to 
be a logical consequence of (fT^ and the PA-provable fact Vy(|?/| < |?/|). ■ 



Fact 12.8 CLAAh x = yux^y. 

^Here and often elsewhere implicitly relying on PA. 
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Proof. Argue in CLA4. In order to solve x = y U x^y, using Fact 112.71 we find the difference a between 
X and y. Further, using Example lll.3[ we figure out whether a = or ot^O. If a = 0, we choose the left 
U -disjunct, otherwise we choose the right U -disjunct. ■ 

For natural numbers n and i — as always identified with the corresponding binary numerals — such 
that i< in our metalanguage, we let [n\i mean bit #i of n, where the count of the bits of n starts from 
rather than 1, and proceeds from left to right. So, for instance, if n = 100, then 1 is its bit #0, and the Os 
are its bits #1 and #2. We treat [n]i as a pseudoterm just like meaning that we can feel free to write 
expressions such understood as abbreviations, in formulas of CLA4. 

Fact 12.9 CLA4h y<\x\-¥\Jz{z = [x]y). 

Proof. Argue in CLA4. By induction on x, we want to show 

ny(|y| < \x\ ^ {y<\x\ ^ Uz(|z| <0' A z= [x]^))) . (17) 

The basis \y\ < |0| — J- (?/< |0| LJz(|z| <0' A z=[0]y)) is obviously solved by a strategy that makes no moves. 
To solve the left inductive step 

ny(\y\<\x\^ {y<\x\^Uz{\z\<0' Az=[x]y))'^ ^ ny(|2/| < |xO| ^ (y < IxO] ^ Uz(|2;| <0' A z = [i-O]^,))) , 

we wait till Environment selects a value a for y in the consequent. Using Facts [T2TT] and fT2?8l we figure out 
whether a= j^l or not. If yes, we select for z in the consequent. If not, we choose a for y in the antecedent 
and wait till Environment responds by selecting a constant b for z there, after which we choose the same 
constant b for z in the consequent. With a little thought, this strategy can be seen to win. 

The right inductive step has a similar strategy, with the difference that, if a=\x\, it chooses the value of 
0' (found using Axiom 8) for z in the consequent. 

Now, the target y<\x\ Li z{z = [x]y) can be seen to be a logical consequence of (fTTl) and the PA-provable 
fact V(2/< |x| ^> < |a;|). ■ 

The exponentiation function 2^ increases the size of its argument exponentially and hence, in view of the 
soundness of CLA4, cannot be provably computable. According to the following fact, however, the same is 
not the case for a limited version of the function: 

Fact 12.10 CLA4 proves both of the following: 

x<\z\^Uy{y = 2-); (18) 
Uy(y = 2l'-|). (19) 

Proof. Argue in CLA4. By CLA4-induction on x, we want to prove a:< |z| — j- LJy(|?;| < |z|' A y = 2^), 
from which ([T8| immediately follows by LC. 

The basis 0< |z| — LJ?/(|j/| < |z|' A y = 2^) is obviously solved by choosing the value a of 0' for y. Such an 
a can be found using Axiom 8. The left inductive step is 

{x<\z\~,Uy{\y\<\z\' Ay = 2n) ^ {xO<\z\^Uy{\y\<\z\' Ay = 2^°)). 

To solve it, we wait till Environment chooses a value for y in the antecedent. If such a value is never 
chosen. Environment loses unless a;<|z| is false. But, if a;<|z| is false, then so is a;0<|z|, and we win. 
So, assume a is the constant chosen by Environment in the antecedent for y. Using Fact 112. 5[ we com- 
pute 6 with b = a?, and choose b for y in the consequent. We win because the game will have evolved to 
(j;<|z| ^ |a|<|z|'Aa = 2^) ^ (a;0<|z| ^ |6| < |z| ' A 5 = 2^°), i.e. 

(a;< |z| ^ \a\ < |z|' A a = 2^) ^ {2x<\z\ ^\a'^\< A 0^=2^'') 

which, by PA, is true. The right inductive step is similar, with the difference that here we shall choose b to 
be 20? rather than a? , computing which will take Axiom 9 in addition to Fact 112.51 
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Thus, (ITS)) is proven. Now we solve i.e. Uy(y = 2l'"l), as follows. First, using Fact 112.11 we find the 
value a of \r\. Next, using (|18p — namely, specifying its z and a; as r and a, respectively — we compute the 
value b with 5=2°, i.e. b=2^^\ and choose that 6 for y in Uy(y = 2l''l). ■ 

We generalize the earlier notation [x]y to [x]y, additionally to y<\x\ requiring that y + z<|a;|. It means 
"the substring of x of length z which starts at the yth bit". For instance, if x=111010, then [a;]2 = 101, [a;]Q = a: 
and, for each i E {0, . . . , 5}, [x]°=0. As always, we identify the bit string [x]y with the number it represents 
in the binary notation. Note that the old [x]y is the special case of [x]y with z = l. The following fact states 
the provable computability of the function [x]y. 

Fact 12.11 CLA4\- y<\x\Ay + z<\x\-^\Jt{t=[xYy). 

Proof. Argue in CLA4. First, by CLA4-induction on r, we want to prove 

y<\x\ Ay+\r\ < \x\ ^ Ut{\t\ < \x\ A i = [x]H). (20) 

The basis y<|x| Ay+|0|<|a;| — )>Ui(|t|<|a::| A<=[x]y''') is solved straightforwardly by choosing for i. That 
is because stands for the empty bit string, and so does [x]^y^ for whatever x,y with y<|a;|. 
The right inductive step is 

{y<\x\ Ay+\r\ < \x\ Ut{\t\ < \x\ A t= [x^)) {y<\x\ Ay + \rl\< \x\ ^ Ut{\t\ < \x\ A t= [x]^;^^)). (21) 

Assume ?/< A ?/+ |rl| < |a;|. Then we also have ?/< |x| A y+ \r\ < \x\. Using the antecedental resource LJt(|i| < \x\ 
At=[x]\^^), we find a with |a|<|a;| such that a=[x]!j'. Using Facts [T2Tl 112.41 and 112. 9[ we further find b with 
6= [a;]j,+|r| . Now the sought value of t is the value of aO + b, which we compute using Axiom 9 and Fact 112. Tl 

To solve the left inductive step, first we figure out (using Example 1 11.3P whether r = Q or not. If r = 0, we 
ignore the antecedent and act in the consequent as the strategy for the basis of induction did. Otherwise, 
we act as the strategy for the right inductive step did. 

((20|) is thus proven. To solve the target y< |x| A y + z < Ut(t= [xjp, assume ?/< |x| A y + 2:< Ixj. Then 
z<|x|. Using Facts [T2?2l and fT2.10i we find the value a of the binary predecessor of 2^. Note that |a| = z. 
Now, using (j20|) . wc find the value b of i.e. of [x]y. Selecting b for t solves the problem. ■ 



13 The soundness of CLA4 

This section is devoted to proving the soundness part of Theorem 111.51 It means showing that any CL A4- 
provable sentence X (as always, identified with its standard interpretation X'^) has a polynomial time 
solution, and that, furthermore, such a solution for X, together with an explicit polynomial bound r for its 
time complexity, can be efficiently extracted from any extended CLA4-proof of X. Consider any sentence 
X with a fixed CLA4-proof. 

For presentational considerations, by induction on the length of the proof of X, we will first simply show 
that a polynomial time solution of X exists. Only after that, at the end of this section, we will show that 
such a solution, together with an explicit polynomial bound for its time complexity, is or can be constructed 
efficiently. 

Assume X is an axiom of CLA4. If AT is a Peano axiom, then it is a true elementary sentence and 
therefore is won by a machine that makes no moves. If X is nx\-\y{y = x') (Axiom 8), then it is won by a 
machine that (for the constant x chosen by Environment for the variable x) computes the value a of x + 1, 
and makes a as its only move in the play. Similarly, if X is nxL\y{y = xO) (Axiom 9), it is won by a machine 
that computes the value a of 2x, and makes a as its only move in the play. Needless to point out that all of 
the above machines run in polynomial time. 

Next, suppose X is obtained from premises Yi,...,y„ by LC. By the induction hypothesis, for each 
i G {1, . . . , n}, we already have a solution (HPM) Mi of Yi together with an explicit polynomial bound £,i for 
the time complexity of TVi. Of course, every such HPM A/i can as well be seen as an n-ary GHPM that simply 
ignores its inputs. Then, by Theorem 1 10.1) we can (efficiently) construct an n-ary GHPM Ai, together with 
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an explicit polynomial bound t(^i, . . . , for the time complexity of the HPM Ai{'~Afi~', . . . , ^Mn~') such 
that the latter solves X. 

Finally, suppose X is (the Fl-closure of) F{x), where F{x) is a polynomially bounded formula, and X 
is obtained by CLA4-Induction on x. So, the premises are (the Fl-closures of) F{0), F{x) F{xO) and 
F{x) F{xl). By the induction hypothesis, there are HPMs Af, /Co,A^i — with explicit polynomial bounds 
^, Co J Ci for their time complexities, respectively — that solve these three premises, respectively. Fix them. 

We need certain auxiliary concepts. Consider any polynomially bounded formula H , any legal position 
$ of riiJ, and any legal move a (by whichever player p) in position In this context, we say that a is 
unreasonable if it signifies a choice of a constant c for a variable y in a U?/(S'(y, z) A G) or n?/(S'(y, z) — )• G) 
(depending on whether p = T or p ±) subcomponent of H, such that c violates the conditions on its size 
imposed by the sizebound S{y, z). Rather than trying to turn this otherwise clear intuitive explanation into a 
strict definition, providing an example would be sufficient. Let H be the formula = A Uydj/j < |z[ ' A z = yO). 
Then the move 1.1111 is unreasonable in position (J-ll). That is because this move signifies choosing the 
constant 1111 for y. And the move ±11 of the position has set the value of 2; to 11 and hence the value of 
l^l to 2. So, the condition |?/|<|z|', i.e. |1111| < |11|', is violated. Any other move l.n with |n|>3, such as 
1.1000 or 1.111111111, would also be unreasonable in that position. 

We replace JV by its "reasonable counterpart" Af' — an HPM which never makes unreasonable moves 
but otherwise is essentially the same as JV. Namely, A/"' is a machine that works just like A/", with the 
difference that, every time J\f makes an unreasonable move that chooses some (offensively long) constant 
c for a variable bound by a (bounded) quantifier of F{0), M' chooses (the always safe) instead. Note 
that this does not decrease the chances of the machine to win, as unreasonable moves always result in the 
corresponding subgames' being lost, anyway. Obviously N' can be efficiently constructed from N. Further, 
the corresponding explicit polynomial bound ^' can also be efficiently indicated (the latter will depend on 
^ and the sizebounds of the U-bound variables of i^(0)). In a similar fashion, we replace ICo,ICi by their 
"reasonable counterparts" ICq,IC[ and the corresponding explicit polynomial bounds Ccn Ci for their time 
complexities. For simplicity, we further replace the three bounds C'j Coj Ci by the (generously taken) common 
bound 0=C'+Co + Ci for the time complexities of all three machines A/"', ICq and IC[. 

We now describe an HPM Ai that solves the conclusion F{x). In this description, we use the term 
"synchronizing" to mean applying copycat between two (sub)games of the form A and ~^A. This means 
copying one player's moves in A as the other player's moves in ^A, and vice versa. The effect achieved this 
way is that the games to which A and -tA eventually evolve (the final positions hit by them, that is) will be 
of the form A' and -lA' , that is, one will remain the negation of the other, so that one will be won by a given 
player iff the other is lost by the same player. Moderated synchronization means the same, with the only 
difference that, whenever a player makes an unreasonable move by choosing an (offensively long) constant c 
for a variable bound by a bounded quantifier, the move is copied by the synchronizer with c replaced by 0. 

Throughout our description and analysis of the work of A4, we assume that its adversary never makes 
illegal moves, for otherwise A4 easily detects illegal behavior and retires with victory. 

At the beginning, Ai waits for Environment to choose constants for the free variables of F{x). Assume 
k is the length of the constant chosen for the variable x, and the bits of that constant, in the left-to-right 
order, are 61, &21 • • • ^fc- We shall also assume here that kT^O, for otherwise the case is straightforward. Let 
do be the constant and, for each i € {1, . . . , fc}, let di be the constant 61 ... 6^. So, the constant chosen 
by Environment for x is dk- For each i e {1, . . . , k}, let IC'i^, stand for /Cq if bi = 0, and for IC[ if 5; — 1. 
Similarly, let xbi stand for xO if hi = 0, and for a;l if 6^ = 1. 

After Environment chooses constants for all free variables of F{x), the work of Ai consists in continuously 
polling its run tape to see if Environment has made any new moves, combined with simulating, in parallel, 
one play of n(F(0)) by Af' and — for each z e {1, . . . , A;} — one play of n(F{x) F{xbi)) by /C^.. In the 
simulation of A/"', Ai lets the imaginary adversary of N' choose, at the very beginning of the play, the same 
constants for the free variables of F{0) as A/('s adversary chose for those variables in the real play. In the 
simulation of each /C^. , A4 lets the imaginary adversary of /C^. choose, at the very beginning of the play, the 
constant di-i for x and the same constants for all other free variables of F{x) -^F{xhi) as A4's adversary 
chose for those variables in the real play. 

Let F'{x) be the result of substituting (see Definition 14. 2|) in F{x) each free variable of F{x) other than x 
by the constant chosen by (the real) Environment for that variable. Thus, after Environment's initial moves, 
V\{^F{x)) has been brought down to F'{dk)- Similarly, after the initial moves by the imaginary adversary of 
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A/"', n(F(0)) will be brought down to F'{0). And similarly, for each i £ {1, . . . , fc}, after the initial moves 
by the imaginary adversary of /C(,. , \~\(^F{x) — )• F{xbi)) will be brought down to F'{di-i) F'{di). 

What does after the above initial moves in the real and simulated plays is that it synchronizes k + 1 
pairs of (sub)games, real or imaginary. Namely: 

• It synchronizes — in the moderated sense — the consequent of the imaginary play of F'{dk-i) — >■ F'{dk) 
by IC'fj^ with the real play of F'{dk). 

• For each i G {1, . . . , fc - 1}, it synchronizes the consequent of the imaginary play of — !> F'{di) 
by IC'i^, with the antecedent of the imaginary play of F'{di) — > by ■ 

• It synchronizes the imaginary play of F'(0) (i.e. of F'{dQ)) by A/"' with the antecedent of the imaginary 
play of F'{do)^F'{d,) by/C^^. 

Below is an illustration of such synchronization arrangements — indicated by arcs — for the case 
4 = ^4 = 1001: 

machine 

/Co 
M 

This completes our description of A^. Remembering our assumption that (TV, ICq, ICi and hence) TV', /Cq, JC'i 
win the corresponding games, with a little thought it can be seen that A4 wins F'{dk) and hence n(F(a;)), 
as desired. It now remains to show that the time complexity of A4 is also as desired. 

Remembering that the machines J\f' ,IC'q,JC'i are "reasonable" and that the synchronization between the 
real play of F'{dk) and the consequent of F'{dk-i) F'{dk) is moderated, one can easily write a term ri{i) 
with a single variable i such that, if t is greater than or equal to the size of any of the constants chosen by 
Environment for the free variables of the sizes of no moves ever made by M or the simulated TV', IC'f^,IC[ 

exceed ri{£). For instance, if F{x) is Uu(|m| < |x| x |z| A nw(|w| < |w| + |x| — j> G)) where G is elementary, then 
■!]{£) can be taken to be ix£ + i + 0"" (here 0"" is to account for the size of the prefix "1." or "0.1." 
that any legal move by T in any of the plays that we consider would take). 

For the rest of this proof, pick and fix an arbitrary play (computation branch) of A4, and an arbitrary 
clock cycle c on which Ai makes a move a in the real play of F{x). Let h and £ be the timecost and the 
background (see Section [7]) of this move, respectively. Let do, . . . , dfc be as in the description of the work of 
A4 . Note that £ is not smaller than the size of the greatest of the constants chosen by Environment for the 
free variables of F(x). Hence, where rj is as in the previous paragraph, we have: 

The sizes of no moves ever made by M. or the simulated J\f\IC'Q,JC[ exceed rj{£). (22) 

The polling, simulation and copycat performed by M. do impose some time overhead. But the latter 
is only (fixed) polynomial and, in our subsequent analysis, can be safely ignored. Namely, for the sake of 
simplicity, we are going to pretend that M. copies moves in its copycat routine instantaneously (as soon as 
detected), and that the times that M. ever spends "thinking" about what move to make are the times during 
which it is waiting for simulated machines to make one or several moves. Furthermore, we will pretend that 
the polling and the several simulations happen in a truly parallel fashion, in the sense that M. spends a 
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single clock cycle on tracing a single computation step of all k + 1 machines simultaneously, as well as on 
checking out its run tape to see if Environment has made a new move. 

Let . . . , be the moves by simulated machines that Ai detects by time c, arranged according to the 
times ti < . . . <tm of their detections (which, by our simplifying assumptions, coincide with the timestamps 
of those moves in the corresponding simulated plays). Let d=c-h. Let j be the smallest integer among 
1, . . . , m such that tj >d. Since each simulated machine runs in time 4>, in view of (j22l) it is clear that tj -d 
does not exceed (l){r]{£)). Nor does ti-ti-i for any i with j<i<ni. Therefore tm-d<{m-j + l)x(j){ri{£)). 
Since m,j>l, let us be generous and simply say that tm-d<mx4)(r](£)). But notice that /3,„ is a move 
made by /C^^ in the consequent of F'{dk-i) F{dk), immediately (by our simplifying assumptions) copied 
by A4 in the real play when it made its move a. In other words, c = i,„. And c-d^h. So, h does not exceed 
mx (j){r]{i)). And, by ([211), the size of a does not exceed mx (f>{'q{£)), either. But observe that k<£, and that 
m cannot exceed k + 1 times the depth (see Section|4]) of F{0); therefore, m<c)x(£+l). Thus, (as long 
as we pretend that there is no polling/simulation/copycat overhead) neither the timecost nor the size of a 
exceed Z)x (^ + 1) x 0(ry(^)). 

An upper bound for the above function c) x (£+ 1) x (^(7y(£)), even after "correcting" the latter so as to 
precisely account for the so far suppressed polling/simulation/copycat overhead, can be written as an explicit 
polynomial function r. The latter expresses the sought polynomial bound for the time complexity of Ad. 

Thus, we have shown how to construct, from a proof of X, an HPM Ai and an explicit polynomial 
function r such that M solves X in time r. Obviously our construction is effective. It remains to see that 
it also is — or, at least, can be made — efhcient. Of course, at every step of our inductive construction 
(for each sentence of the proof, that is), the solution M of the step and its time complexity bound r is 
obtained efficiently from previously constructed Ads and ts. This, however, does not guarantee that the 
entire construction will be efficient as well. For instance, if the proof has n steps and the size of each HPM 
A4 that we construct for each step is twice the size of the previously constructed HPMs, then the size of the 
eventual HPM will exceed 2" and thus the construction will not be efficient, even if each of the n steps of it 
is so. 

A trick that we can use to avoid an exponential growth of the sizes of the machines that we construct 
and thus achieve the efficiency of the entire construction is to deal with GHPMs instead of HPMs. Namely, 
assume the proof of X is the sequence Xi, . . . , Xn of sentences, with X = Xn- Let A4i, . . . , 7W„ be the HPMs 
constructed as we constructed Ms earlier at the corresponding steps of our induction. Remember that each 
such A4i was defined in terms of Aij^ , • ■ • , Aij^ for some ji, ■ ■ ■ ,jk < * ■ For simplicity and uniformity, we may 
just as well say that each Mi was defined in terms of all A^i, . . . , Mn, with those A^^s that were not among 
Mji , . . . , Mj^ simply ignored in the description of the work of Mi- Now, for each such Mi, let ■ be the 
n-ary GHPM whose description is obtained from that of Mi by replacing each reference to (any previously 
constructed) Mj by ''M'j{'~M'i~', . . . ,^Mn^) where, for each e G {!,..., n}, M'^, is the machine encoded 
by the eth input" As it is easy to see by induction on i, Mi and M'^^C M'l'^ , . . . , ^M'„'^) are essentially 
the same, in the sense that our earlier analysis of the play and time complexity of the former applies to the 
latter just as well. So, Mn{'~M[~', . . . , '~A^^~') wins X„, i.e. X. At the same time, note that the size of each 
GHPM M'l is independent of the sizes of the other (previously constructed) GHPMs. Based on this fact, 
with some analysis, one can see that then the HPM M'^CM'i'', . . . , ''M'^'') is indeed constructed efficiently. 

As for the explicit polynomial bounds ri, . . . , t„ for the time complexities of the n HPMs M'lC M'i~' , . . . , '~M 
. . . , M'ni^M'i"', . . . , '~M'n~'), their sizes can be easily seen to be polynomial in the size of the proof. That 
is because, for each i £ {!,..., n}, the size of n only increases the sizes of the earlier constructed tjS by 
adding (rather than multiplying by) a certain polynomial quantity^ Thus, the explicit bound r„ for the 
time complexity of the eventual HPM M'„{'~Mi~', . . . , ^Mn~') is indeed constructed efficiently. 

14 The extensional completeness of CLA4 

This section is devoted to proving the completeness part of Theorem 111.51 It means showing that, for any 
arithmetical problem A that has a polynomial time solution, there is a theorem of CLA4 which, under the 

'^''For simplicity, here we assume that every number is a code of some n-ary GHPM; alternatively, M'^ can be defined so that 
it does nothing if any of its relevant inputs is not the code of some n-ary GHPM. 

^^The fact that we represent complexity bounds as explicit polynomial functions rather than polynomial tree- terms or even 
graph-terms is relevant here. 
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standard interpretation, equals ("expresses") A. 



14.1 X, X and x 

So, let us pick an arbitrary polynomial-time-solvable arithmetical problem A. By definition, A is an arith- 
metical problem because, for some sentence X of the language of CLA4, A = X"^ . For the rest of this 
section, wc fix such a sentence X, and fix X as an HPM that solves A (and hence X'^) in polynomial time. 
Specifically, we assume that X runs in time X) where X) which we also fix for the rest of this section, is a 
single- variable term of the language of PA — and hence can as well be seen/ written as an explicit polynomial 
function with x(x)>.t for all x. For readability, we also agree that, throughout the rest of this section, 
"formula" exclusively means a subformula oi X, in which some variables may be renamed. 

X may not necessarily be provable in CLA4, and our goal is to construct another sentence X for which, 
just like for X, wc have A = x"^ and which, perhaps unlike X , is provable in CLA4. 

Remember our convention about identifying formulas of the language of CLA4 with (the games that 
are) their standard interpretations. So, in the sequel, just as we have done so far, we shall typically write 
E,F, . . . to mean either i?, F, . . . or _E^, F^, . . .. Similar conventions apply to terms as well. In fact, we have 
already used this convention when saying that X runs in time x- What was really meant was that it runs in 
time . 



14.2 Preliminciry insights 

Our proof is a little long and, in the process of going through it, it is easy to get lost in the forest and stop 
seeing it for the trees. Therefore, it might be worthwhile to try to get some preliminary insights into the 
basic idea behind this proof before venturing into its details. 

Let us consider the simplest nontrivial special case where X is 

nx{Y{x)uZ{x)) 

for some elementary formulas Y{x) and Z{x) (perhaps Z{x) is -Y{x), in which case X expresses an ordinary 
decision problem — the problem of deciding the predicate Y{x)). 

The assertion "A" does not win X in time x" can be formalized in the language of PA through as a 
certain sentence L. Then we let the earlier mentioned X be the sentence 
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a;((r(a;)vL)u(Z(a;)vL)). 



Since X does win the game X in time x^ L is false. Hence Y(x) VL is equivalent to Y{x), and Z{x) VL is 

equivalent to Z{x). This means that X and X, as games, are the same, that is, X = X+. It now remains 
to tuiderstand why CLA4 h X. 

A central lemma here is one establishing that the work of X is ^^provably traceable" . Roughly, in our 
present case this means the provability of the fact that, for any (□) value chosen for x by Environment — 
let us continue referring to that value as a; — we can tell (U) the configuration of X in the corresponding 
play of X at any given time t. Letting X work for xi^) steps, one of the following four evcintiial scenarios 
should take place, and the provable traceability of the work of X can be shown to imply that CLA4 proves 
the U -disjunction of sentences describing those scenarios: 

Scenario 1: X makes the move (and no other moves). 
Scenario 2: X makes the move 1 (and no other moves). 
Scenario 3: X does not make any moves. 

Sceneirio 4: X makes an illegal move (perhaps after first making a legal move or 1). 

In the case of Scenario 1, the play over X hits Y{x) vL. And CLA4 — in fact, PA — proves that, in 
this case, Y{x) V L is true. The truth of Y{x) V L is indeed very easily established: if it was false, then Y{x) 
should be false, but then the play of X over X hits the false Y{x) and hence is lost, but then L is true, but then 
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Y{x) vL is true. Thus. CLA4 h {Scenario 1) -^Y{x) VL, from which, by LC, CLA4 h {Scenario 1) ->-X. 
The case of Scenario 2 is symmetric. 

In the case of Scenario 3, (CLA4 proves that) X loses, i.e. L is true, and hence, say, Y{x) vL (or 
Z{x)\/l^ if you like) is true. That is, CLA4 h {Scenario 3) ^Y{x)w'L, from which, by LC, CLA4 h 
{Scenario 3) ^ X. The case of Scenario 4 is similar. 

Thus, for each i e {1, 2, 3, 4}, CLA4 h {Scenario i) — s- X. And, as mentioned, we also have 

CLA4 h {Scenario 1) U {Scenario 2) U {Scenario 3) U {Scenario 4)- 

The desired CLA4 h X follows from the above provabilities by LC. 

The above was about the pathologically simple case of X = nx{Y{x) u Z{x)), and the general case will 
be much more complex, of course. Among other things, showing the provability of X would require a certain 
metainduction on its complexity, which we did not need in the present case. But the idea that we have 
just tried to explain would still remain valid and central, only requiring certain — nontrivial yet doable — 
adjustments and refinements. 

14.3 The sentence L 

By a literal we mean T, ±, or an atomic formula with or without negation -i. By a politeral of a formula 
we mean a positive (not in the scope of ->) occurrence of a literal in it. For instance, the occurrence of p, 
as well as of -^q (but not g), is a politeral of p A ^q. While a politeral is not merely a literal but a literal L 
together with a fixed occurrence, we shall often refer to it just by the name L of the literal, assuming that 
it is clear from the context which (positive) occurrence of L is meant. 

We assume that the reader is sufficiently familiar with Godel's technique of encoding and arithmetizing. 
Using that technique, we can construct a sentence L of the language of PA which asserts "A" does not win 
X in time x" ■ Namely, let Ei{x), . . . , En{x) be all subformulas of X, where all free variables of each Ei{x) 
are among x (but not necessarily vice versa). Then L is the V -disjunction of natural formalizations of the 
following statements: 

1. There is a T -illegal position of X spelled on the run tape of X on some clock cycle of some 
computation branch of X. 

2. There is a clock cycle c in some computation branch of X on which X makes a move whose 
timecost exceeds x(^); where I is the background of c. 

3. There is a (finite) legal run T of X generated by X and a tuple c of constants (c of the same 
length as x ) such that: 

• (r)X = Ei{c), and we have -^\\Ei{c)\\ (i.e., \\Ei{c)\\ is false), 

• or . . ., or 

• {r)X = En{c), and we have ^\\En{c)\\ (i.e., \\En{c)\\ is false). 

14.4 The overhne notation 

As we remember, our goal is to construct a formula X which expresses the same problem as X does and 
which is provable in CLA4. For any formula E — including X — we let E be the result of replacing in E 
every politeral L by L V L. 

Lemma 14.1 Any literal L is equivalent (in the standard model of arithmetic) to Ly'h. 

Proof. That L implies L V L is immediate, as the former is a disjunct of the latter. For the opposite 

direction, suppose L vL is true at a given valuation e. Its second disjunct cannot be true, because X does 
win X in time x, contrary to what L asserts. So, the first disjunct, i.e. L, is true. ■ 

Lemma 14.2 For any formula E, including X , we have E^ = e\ 
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Proof. Immediately from Lemma ll4.1l bv induction on the complexity of E. M 



In view of the above lemma, what now remains to do for the completion of our completeness proof is to 
show that CLA4 h X. The rest of the present section is entirely devoted to this task. 

Lemma 14.3 For any formula E, CLA4 h L ^ Vi?. 

Proof. Induction on the complexity of E. The base, which is about the cases where i? is a literal, 
is straightforward, as then L is a disjunct of E. If E has the form A i/o V Hi, Hq n Hi or Hq U Hi 
then, by the induction hypothesis, CLA4 proves L— >-ViJo and L— >V7/i, from which L— )>V-E follows by 
LC. Similarly, if E has the form ^xH(x), 3xH{x), nxH{x) or L\xH(x), then, by the induction hypothesis, 
CLA4 proves L -> VH{x), from which L VE follows by LC. ■ 

14.5 The single-circle and double-circle notations 

The way we encode configurations through natural numbers will be precisely described later in Section lA.ll 
For now, it would be sufficient to say that the size of the code of a configuration is always greater than the 
background (see Section [7]) of the corresponding clock cycle in the corresponding play. For readability, we 
will often identify configurations with their codes and say something like "a is a configuration" when what 
is precisely meant is "a is the code of a configuration" . 

By a legitimate configuration we shall mean a configuration of X that might have occurred in some 
computation branch B oi X such that the run spelled by i? is a legal run of X. The yield of such a 
configuration is the game ('I')^, where $ is the position spelled on the run tape in that configuration. 

By a deterministic successor of a legitimate configuration x we mean the configuration y such that y 
immediately follows x (in one transition) in the scenario where Environment does not move during the cycle 
described by x. For n > 0, the nth deterministic successor of x is defined inductively by stipulating that 
the 0th deterministic successor of x is x, and the (n+l)th deterministic successor of x is the deterministic 
successor of the nth deterministic successor of x. 

Let E{s) be a formula all of whose free variables are among s (but not necessarily vice versa), and z be 
a variable not among s. We will write E°{z, s) to denote an elementary formula whose free variables are z 
and those of E{s), and which is a natural arithmetization of the predicate that, for any constants a, c in the 
roles of z, s, holds (that is, E°{a, c) is true) iff a is a legitimate configuration and its yield is E{c). Further, 
we will write E°{z,s) to denote an elementary formula whose free variables are z and those of E{s), and 
which is a natural arithmetization of the predicate that, for any constants a,c in the roles of z,s, holds iff 
E°{a, c) A E°{b, c) is true, where b is the x(|a|)th deterministic successor of a. 

We say that a formula E is critical iff one of the following conditions is satisfied: 

• i? is of the form Go U Gi or UyG; 

• i? is of the form Vj/G or 3yG, and G is critical; 

• i? is of the form Go V Gi, and both Gq and Gi are critical; 

• i? is of the form Go A Gi, and at least one of Go, Gi is critical. 

Lemma 14.4 Assume E{s) is a non-critical formula all of whose free variables are among s. Then 

PAhy{E:{z,s)^\\m\\)- 

Proof. Assume the conditions of the lemma. Argue in PA. Consider arbitrary (V) values of z and s, 
which we continue writing as z and s. Suppose, for a contradiction, that E°{z, s) is true but ||i?(s)ll is false. 
The falsity of ||i?(s)|| implies the falsity of [[^^(s^ll. This is so because the only difference between the two 
formulas is that, wherever the latter has some politeral L, the former has a V -disjunction containing L as 
a disjunct. 

The truth of E°{z, s) implies that X reaches the configuration (computation step) z and, in the scenario 
where Environment does not move, X does not move either for at least xd-^l) steps afterwards. If X does 
not move even after x(kl) steps, then it has lost the game, because the eventual position hit by the latter 
is E{s) and the elementarization of the latter is false (it is not hard to see that every such game is indeed 
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lost). And if X does make a move sometime after xd^l) steps, then it violates its time complexity bound x, 
because the background of that move is smaller than \z\ but the timecost is at least x(|2;|). Thus, in either 
case, X does not win X in time x, that is, 

L is true. (23) 

Consider any non-critical formula G. By induction on the complexity of G, we are going to show that 
||G|| is true for any (V) values of its free variables. Indeed: 
If G is a literal, then ||G|| is G vL which, by (gSl), is true. 
If G is ifo n Hi or T\xH{x), then ||G|| is T and is thus true. 
G cannot be Hq U Hi or Ux7J(a;), because then it would be critical. 

If G is yyH{y) or 3yH{y), then ||G|| is Vy||i?(j/)|| or 3y\\H{y)\\. In either case ||G|| is true because, by 
the induction hypothesis, ||i/(y)|| is true for every value of its free variables, including variable y. 

If G is Ho A Hi, then both Hq and Hi are non-critical. Hence, by the induction hypothesis, both \\Hq\\ 
and IjiJill are true. Hence so is ||i?o|| A \\Hi\\ which, in turn, is nothing but ||G||. 

Finally, if G is Hq V Hi, then one of the formulas Hi is non-critical. Hence, by the induction hypothesis, 
\\Hi\\ is true. Hence so is \\Ho\\ V \\Hi\\ which, in turn, is nothing but ||G||. 

Thus, for any non-critical formula G, ||G|| is true. This includes the case G = E{s) which, however, 
contradicts our assumption that ||i?(s)|| is false. ■ 

Lemma 14.5 Assume E{s) is a critical formula all of whose free variables are among s. Then 

Cl,A4^3E°{z,s)^yE(/}. (24) 

Proof. Assume the conditions of the lemma. By induction on complexity, one can easily see that 
the elementarization of any critical formula is false. Thus, for whatever (V) values of s, \\E{s)\\ is false. 
Arguing further as we did in the proof of Lemma [14.41 when deriving ([23|) . we find that, if E°{z,s) is true 
for whatever (3) values of z and s, then so is L. And this argument can be formalized in PA, so that we 
have PA h 3E°{z, s) — s> L. This, together with Lemma [14.31 can be easily seen to imply ((24)) by LC. ■ 

14.6 Q.E.D. 

In this subsection we finish the extensional completeness proof for CLA4. Well, almost finish. The point is 
that our argument relies on Lemma 114.61 whose proof is postponed to Appendix [X] Here we only present a 
brief intuitive explanation of the proof idea for it. A reader satisfied by our explanation will have no reasons 
to go through the technical appendix given at the end of this paper, whose only purpose is to provide a 
relatively detailed proof for Lemma 114.61 

Let -E be a formula not containing the variable y. We say that a formula is a (±. j/)-development of 
E iS H is the result of replacing in E: 

• either a surface occurrence of a subformula FqU Fi hy Fi (i — or i = I), 

• or a surface occurrence of a subformula nxF{x) by F{y). 

(T, i/)-development is defined in the same way, only with U , U instead of n , 

Lemma 14.6 Assume E{s) is a formula all of whose free variables are among s, and y is a variable not 
occurring in E{s). Then: 

(a) For every {3-,y)-development Hi{y,s) of E{s), CLA4 proves E°{z,s) ^VAuH°[u,y,s). 

(h) Where Hi{y, s), . . . , H„{y, s) are all of the (T, y)- developments of E{s), CLA4 proves 

E°{z,s)^El{z,s)ul.uVAuVAyHl{u,y,s)U ... uVAuVAyHl{u,y,s). (25) 

Proof idea. E°(z, s) implies that z is a configuration reached by X in some play, and the game by 
that time has been brought down to E{s). E°{z,s) additionally implies that this situation persists "for a 
while" after z. 

For clause (a), assume E°{z, s). For any (_L, j/)-development Hi{y, s) of E{s) and any value of y, Hi(y, s) 
is the game to which E{s) is brought down by a certain labmove -La. To solve \-\uH°(u, y, s) — i.e., make 
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H°{u, y, s) true — we can choose u to be the result of appending such a labmove _La to the run tape content 
of the deterministic successor of configuration z. After properly formalizing encoding for configurations, this 
argument can be reproduced in CLA4. 

For clause (b), assume E°{z,s). We can trace, within CLA4, the work of X for "sufficiently many" — 
namely, x(kl) — steps in the scenario where Environment does not move. If X does not move during those 
x(|z|) steps either, then E°{z, s) is true and we can choose it in the consequent of (|25p . Suppose now X makes 
a move a within xd^l) steps. If a is illegal, then L is true, and we choose the latter in the consequent of pS]) . 
Otherwise, if a is a legal move, then it brings E{s) down to one of (the instances of) its (T, ?/)- developments 
i?i(y, s) for a certain value of y. We choose the corresponding U -disjunct in the consequent of (P5|) : further, 
by tracing the work of X ^ we will be able to compute the value of the configuration u in which X made the 
above move, as well the above-mentioned "certain value of y" . By choosing these values for the variables u 
and y in VAu\-\yHi{u^y,s), we win the game. Again, after properly formalizing encoding for configurations, 
the entire argument can be reproduced in CLA4. ■ 

Lemma 14.7 Assume E{s) is a formula all of whose free variables are among s. Then CLA4 proves 

E°{z,s}-^m/}. 

Proof. We prove this lemma by (meta) induction on the complexity of E{s). By the induction hypoth- 
esis, for any {-L,y)- or (T, y)-development Hi{y,s) of E(s) (if there are any), CLA4 proves 

H°{u,y,s}-^Hd^. (26) 

Argue in CLA4 to justify E°{z, s) E{s). Consider any values (constants) b and a chosen by Environ- 
ment for z and s, respectively^ Assume E°{b,a) is true (if not, we win). Our goal is to show how to win 
E{a). From clause (b) of Lemma [14.61 the resource (|25|) with b,a plugged for z, s is at our disposal. Since 
the antecedent of the latter is true, the provider of (|25p will have to choose one of the U -disjuncts in the 
consequent 

E°{b,d)uTLu UuUyH^ (u, y, a) U . . . U UuUyH° (w, y , a) . (27) 

Case 1: L is chosen in (f27| . It has to be true, or else the provider loses. By Lemma [14.31 we also have 
the resource L^Vi?(s). Since its antecedent L is true, we know how to win the consequent \/E{s). But a 
strategy that wins the latter, of course, also wins our target E{a). 

Case 2: One of \-iu\-iyH°{u,y,a) is chosen in ([27)) . This should be followed by a further choice of some 
constants c and d for u and y, yielding H°{c,d,a). Plugging a, c and d for s, u and y in ([M)) . we get 
H° (c, d, a) — Hi {d, a) . We may assume that the antecedent of the latter is true, or else the provider of (l?f)) 
lied when bringing the latter down to H°{c, d, a). Thus, the consequental resource Hi{d, a) is at our disposal. 
But, remembering that the formula Hi{y,s) is a (T, ?/)-development of the formula E{s), we can now win 
E{d) by making a move a that brings the latter down to Hi{d,a), which we already know how to win. For 
exa mple, ima g ine E {s} is Y{ s) Z{s} U T(s) and H^{y, s) is Y{s) Z{s), so that E{d) is F (a) ^ Zja) U T{a) 
and Hi{d, a) is Y{d) — 5> Z{d). Then the above move a will be "1.0" . It indeed brings Y{d) — !> Z{a) U T{a) down 
to Y{a) — Z{d). As another example, imagine E{s) is Y{s) UwZ{w, s) and Hi{y, s) is Y{s) — ^ Z{y, s), so 
that E{d) is Y{d) — ^ UwZ{w,d) and Hi{d,d) is Y{d) — !> Z{d,d). Then the above move a will be "l.d". It 
indeed brings Y{d) — > L\wZ(w, a) down to Y{d) Z(d, a). 

Case 3: E°{b,d) is chosen in (l27l) . It has to be true, or else the provider loses. 

Subcase 3.1: The formula E{s) is critical. Since E°{b,d) is true, so is 3E°{z,s). By Lemma ri4.51 we also 
have 3E°{z,s) — 5>Vi?(s). So, we have a strategy that wins V£^(s). Of course, the same strategy also wins 

Subcase 3.2: The formula E{s) is not critical. By Lemma [14.41 we find that the elementarization of 
E{a) is true. This obviously means that if Environment does not move in E{d), we win the latter. So, 
assume Environment makes a move a in E[d). The move should be legal, or else we win. Of course, 
the same move is a legal move of E{d) and, for one of the (_L, j/)-developments Hi{y,s) of the formula 
E{s) and some constant c, it brings E{d) down to Hi{c,d) as well as E{d) down to Hi{c,d). For exam- 
ple, if E{s) is Y{s) ^ Z{s}nT{s), a could be the move "1.0", which brings Y{d) ^ Z{a) nT{d) down to 
Y{d) — > Z{d); the formula Y{s) Z(s) is indeed a (_L, j/)-development of the formula Y{s} Z{s) n T{s). 

^^Here, unlike the earlier followed practice, for safety, we are reluctant to use the names z and sfor those constants. 
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As another example, imagine E{s) is Y{s) — >■ nwZ{'w, s). Then the above move a could be "l.c" , which brings 
y(a) — >■ \~\wZ{'w, a) down to Y{a) — >■ Z(c, a); the formula F(s) — >■ Z{y, s) is indeed a (±, ?/)-development of the 
formula Y{s} — >■ nwZ(w, s}. Fix the above formula Hi(jj, s) and constant c. Choosing 6, a and c for z, s and 
y in the resource provided by clause (a) of Lemma [14.61 we get the resource E°{b, a) -> \JuH°{u, c, a). Since 
the antecedent of the latter is true by our assumptions, the consequent \-\uH°(u, c, a) is at our disposal. The 
provider will have to choose a constant d for u in it such that H°{d,c,a) is true. Hence, by choosing d, c 
and a for u, y and s in (j26p . we get the resource Hi{c,a). That is, we have a strategy for the game Hi{c,a) 
to which i?(a) has evolved after Environment's move a. We switch to that strategy and win. ■ 

Now we are ready to claim the target result of this section. Let a be the code of the start configuration 
of X, and a be a standard variable-free term representing a, such as followed by a "'"s. Of course, PA 
and hence CLA4 proves X°{d). By Fact 112.61 CLA4 proves L\z{z = a). By Lemma H 4. 71 CLA4 also proves 
nz(X°(z) — X). These three can be seen to imply X by LC. Thus, CLA4 h X, as desired. 

15 Inherent extensional incompleteness in the general case 

The extensional completeness of CLA4 is not a result that could be taken for granted. In this short section we 
argue that, if one replaces polynomial time computability by simply computability in our semantical treatment 
of CLA4, extensional completeness is impossible to achieve for whatever recursively axiomatizable sound 
extension of CLA4 or other systems of clarithmetic. 

Our extensional incompleteness argument goes like this. Consider any system S in the style of CLA4 
whose proof predicate — throughout this section understood in the "superextended" sense of Section [11] — 
is decidable and hence the theoremhood predicate is recursively enumerable. Assume S is sound in the same 
strong sense as CLA4 — that is, there is an effective procedure that extracts an algorithmic solution (HPM) 
for the problem represented by any sentence F from any S-proof of F. 

Let then A{s) be the predicate which is true iff: 

• s is (the code of) an S-proof of some sentence of the form \~\x[-^E{x) U E{x)) , where E is elementary, 

• and E{s) is false. 

On our assumption of the soundness of S, A{s) is a decidable predicate. Namely, it is decided by a 
procedure that first checks if s is the code of an S-proof of some sentence of the form \~\x(^-^E{x) uE{x)), 
where E is elementary. If not, it rejects. If yes, the procedure extracts from s an HPM TL which solves 
\~\x(^-^E{x) \jE{x)), and then simulates the play of H in the scenario where, at the very beginning of the 
play. Environments makes the move s, thus bringing the game down to -^E{s) uE{s). If, in this play, H 
responds by choosing -^E{s), then the procedure accepts s; and if H responds by choosing E{s), then the 
procedure rejects s. Obviously this procedure indeed decides the predicate A. 

Now, assume that S is extensionally complete. Since A is decidable, the problem nx[-^A{x) U A{x)) has 
an algorithmic solution. So, for some sentence F with F^ — \~\x(^-^A{x) U A{x)) and some c, we should have 
that c is (the code of) an S-proof of F. Obviously F should have the form nx[^E{x) U E{x)) , where E{x) 
is an elementary formula with E^{x) — A{x). We are now dealing with the absurd of A{c) being true iff it 
is false. 

16 On the intensional strength of CLA4 

Theorem 16.1 Let X and L be as in Section^TJ^ Then CLA4 \- X. 

Proof. Let X and L be as in Section [T31 and so be the meaning of the overline notation. First, by 
induction on the complexity of -E, we want to show that 

For any formula E, CLA4 h \/(E A^L^E). (28) 

If E' is a literal, then \/{X A^h^E) is nothing but V((£; V L) A ^ E) . This is a classically valid elemen- 
tary sentence, and hence it is provable in CLA4 (by LC from the empty set of premises). Next, suppose E 
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is Fo A Fi. By the induction hypothesis, CLA4 proves both V(Fo A -^L — ^ Fq) and V(Fi A — !> Fi). These 
two, by LC, imply V((7b A F^) A -.L ^- Fq A Fi) . And the latter is nothing but the desired V(F A F). 
The remaining cases where F is Fq V Fi, Fq n Fi, Fq U Fi, r\xF{x), UxF(x), WxF{x) or 3xF{x) are handled 
in a similar way. (j28p is thus proven. 

(PS)) implies that CLA4 proves X X. As established in Section [HI CLA4 also proves X. From 

these two, by LC, CLA4 proves -iL — )> A, as desired. ■ 

Remember that, in Section [141 ^ was an arbitrary CLA4-sentence assumed to have a polynomial time 
solution under the standard interpretation ^ . And -iL was a certain true sentence of the language of classical 
Peano arithmetic. We showed in that section that CLA4 proved a certain sentence X with X^ ~ A^. That 
is, we showed that X was "extensionally provable" . According to our present Theorem II 6. 11 in order to make 
X also provable in the intensional sense, all we need is to add to the axioms of CLA4 the true elementary 
sentence ^L. 

In philosophical terms, the import of Theorem 1 16. II is that the culprit of the intensional incompleteness 
of CLA4 is the (Godel's) incompleteness of its classical, elementary part. Otherwise, the "nonelementary 
rest" of CLA4 — the two extra-Peano axioms and the CLA4-Induction rule — as a bridge from classical 
arithmetic to polynomial-time-computability-oriented clarithmetic, is complete in a certain very strong and 
natural sense. Namely, it guarantees not only extensional but also intensional provability of every polynomial 
time computable problem as long as all necessary true elementary sentences are taken care of. This means 
that if, instead of PA, we take the truth arithmetic Th(N) (the set of all true sentences of the language 
of PA) as the base arithmetical theory, the corresponding version of CLA4 will be not only extension- 
ally, but also intensionally complete. Unfortunately, however, such a system will no longer be recursively 
axiomatizable. 

To summarize, in order to make CLA4 intensionally stronger, it would be sufficient to add to it new 
true elementary (classical) sentences only. Note that this sort of an extension, even if in a language more 
expressive than that of PA, would automatically remain sound and extensionally complete: virtually nothing 
in this paper relies on the fact that PA is not stronger than it really is. Thus, basing applied theories on CoL 
allows us to construct ever more expressive and intensionally strong theories without worrying about how 
to preserve soundness and extensional completeness. Among the main goals of this paper was to illustrate 
the scalability of CoL rather than the virtues of the particular system CLA4 based on it. The latter is 
in a sense arbitrary, as is PA itself: in the role of the classical part of CLA4, we could have chosen not 
only any true extension of PA, but certain weaker-than-PA theories as well, for our proof of the extensional 
completeness of CLA4 does not require the full strength of PA. The reason for not having done so is purely 
"pedagogical": PA is the simplest and best known arithmetical theory, and reasoning in it is much more 
relaxed, easy and safe than in weaker versions. CLA4 is thus the simplest and nicest representative of 
the wide class of clarithmetical theories for polynomial time computability, all enjoying the same relevant 
properties as CLA4 does. 

As pointed out in Section [1] among the potential applications of CLA4-style systems is using them as 
formal tools (say, after developing reasonable theorem-provers) for systematically finding efficient solutions 
for problems, and the stronger such a system is, the better the chances that a solution for a given problem 
will be found. Of course, what matters in this context is intensional rather than extensional strength. So, 
perfect strength is not achievable, but we can keep moving ever closer to it. 

One may ask why not think of simply using PA (or even, say, ZFC) instead of CLA4 for the same 
purposes: after all, PA is strong enough to allow us reason about polynomial time computability. This is 
true, but PA is far from being a reasonable alternative to CLA4. First of all, as a tool for finding solutions, 
PA is very indirect and hence hopelessly inefficient. Pick any of the basic functions of Section [T2| and try 
to generate, in PA, a full formal proof of the fact that the function is polynomial-time computable (or even 
just express this fact) to understand the difference. Such a proof would have to proceed by clumsy reasoning 
about non-number objects such as Turing machines and computations, which, only by good luck, happen to 
be amenable to being understood as numbers through encoding. In contrast, reasoning in CLA4 is directly 
about numbers and their properties, without having to encode any foreign (metaarithmetical or complexity- 
theoretical) beasts and then try to reason about them as if they were just kind and innocent natural numbers. 
Secondly, even if an unimaginably strong theorem-prover succeeded in finding such a proof, there would be 
no direct use of it because, from a proof of the existence of a solution we cannot directly extract a solution. 
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Furthermore, even knowing that a given HPM X solves the problem in some polynomial time x, would have 
no practical significance without knowing what particular polynomial x is, in order to assess whether it is 
reasonable for our purposes, or takes us beyond the number of nanoseconds in the lifespan of the universe 
(after all, i^'^^ is also a polynomial function!). In order to actually obtain a solution and a polynomial 
bound for it, one would need a constructive proof, that is, not just a proof that a polynomial function x 
and a x-time solution exist, but a proof of the fact that certain particular numbers a and h are (the codes 
of) a polynomial term x and a x-time solution X. Otherwise, a theorem-prover would have to be used not 
just once for a single target formula, but an indefinite (intractably many) number of times, once per each 
possible pair of values of a,b until the "right" values are encountered. To summarize, PA does not provide 
any reasonable mechanism for handling queries in the style "/ind a polynomial time solution for problem A" : 
in its standard form, PA is merely a YES/NO kind of a "device". 

The above dark picture can be somewhat brightened by switching from PA to Heyting's arithmetic 
HA — the version of PA based on intuitionistic logic instead of classical logic, which is known to allow 
us to directly extract, from a proof of a formula 3xF{x), a particular value of x for which F{x) is true. 
But the question is why intuitionistic logic and not CoL? Both claim to be "constructive logics", but the 
constructivistic claims of CoL have a clear semantical meaning and justification, while intuitionistic logic 
is essentially an ad hoc invention whose constructivistic claims are mainly based on certain syntactic and 
hence circular considerations!^ without being supported by a convincing and complete formal constructive 
semantics. And, while HA is immune to the second one of the two problems pointed out in the previous 
paragraph, it still suffers from the first problem. At the same time, as a reasoning tool, HA is inferior to PA, 
for it is intensionally weaker and, from the point of view of the philosophy of CoL, is so for no good reasons. 
As a simple example, consider the function / defined by "/(a;) = a; if PA is either consistent or inconsistent, 
and f{x) = 2x otherwise". This is a legitimately defined function, and we all — just as PA — know that 
extensionally it is the same as the identity function f{x) — x. Yet, HA can be seen to fail to prove — in the 
intensional sense — its computability. Despite its name, intuitionistic logic is not so "intuitive" after all! 

A natural question to ask is: Is there a sentence X of the language of CLA4 whose polynomial time 
computability is constructively provable in PA yet X is not provable in CLA4? Remember that, as we 
agreed just a while ago, by constructive provability of the polynomial time computability of X in PA 
we mean that, for some particular HPM X and a particular polynomial (term) x, PA proves that X is a, 
X-time solution of X. If the answer to this question was positive, then PA, while indirect and inefficient, 
would still have at least something to say in its defense when competing with CLA4 as a problem-solving 
tool. But, as seen from the following theorem, the answer to the question is negative: 

Theorem 16.2 Let X be any sentence of the language of CLA4 such that PA constructively proves (in the 
above sense) the polynomial time computability of X . Then CLA4 h X. 

Proof. Consider any sentence X of the language of CLA4. Assume PA constructively proves the 
polynomial time computability of X , meaning that, for a certain HPM X and a certain term x, PA proves 
that X solves X in time x- But this is exactly what the sentence L of Section [14] denies. So, PA h ^L. But, 
by Theorem II 6. 11 we also have CLA4 I — X. Consequently, CLA4 \- X. ■ 

An import of the above theorem is that, if we tried to add to CLA4 some new nonelementary axioms in 
order to achieve a properly greater intensional strength, the fact that such axioms are computable in time 
X for some particular polynomial x would have to be unprovable in PA, and hence would have to be "very 
nontrivial" . The same applies to attempts to extend CLA4 through some new rules of inference. 

17 Give Caesar what belongs to Caesar 

Beginning from Buss's seminal work [6-, many complexity-sensitive or complexity-oriented arithmetical and 
logical systems have been developed by various authors ( [SJ [ll 13 [9j [TOl [33l |35] and more). Most of those 

^^What creates circularity is the common-sense fact that syntax is merely to serve a meaningful semantics, rather than vice 
versa. It is hard not to remember the following words from ,26 , here: "The reason for the failure of P U —iP in CoL is not that 
this principle ... is not included in its axioms. Rather, the failure of this principle is exactly the reason why this principle, or 
anything else entailing it, would not be among the axioms of a sound system for CoL" . 
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achieve control over complexity in ways very different from ours, such as by type information rather than by 
explicit bounds on quantifiers, for which reason we do not attempt any direct comparison here. As pointed 
out in Section [TJ Buss's .6 original work on bounded arithmetic is closest to — and the most immediate 
precursor of — our approach. In fact, in a broad sense, CLA4 is a system of bounded arithmetic, only based 
on CoL instead of classical logic or intuitionistic logic on which the other systems of bounded arithmetic 
have been traditionally based. 

The main relevant results in the studies of classical-logic-based bounded arithmetic, extensive surveys of 
which can be found in [111 132] . can be summarized saying that, by appropriately weakening the induction 
axiom of PA and restricting it to bounded formulas of certain forms, and correspondingly readjusting the 
nonlogical vocabulary and axioms of PA, certain soundness and completeness for the resulting system(s) S 
can be achieved. Such soundness results typically read like "If S proves a formula of the form yx3yF{x, y), 
where F satisfies such and such constraints, then there is function of such and such computational complexity 
which, for each a, returns a b with F{a, 6)" . And completeness results typically read like "For any function 
/ of such and such computational complexity, there is an S-provable formula of the form yx3yF{x, y) such 
that, for any a and 6, F{a, h) is true iff 6 = /(a)" . 

Among the characteristics that make our approach very different from the above (as well as any other 
complexity-oriented systems of arithmetic known to the author) , one should point out that it extends rather 
than restricts the language and the deductive power of PA. Restricting PA can be seen as throwing out the 
baby with the bath water. Not only does it expel from the system many complexity-theoretically unsound 
yet otherwise meaningful and useful theorems, but it also reduces — even if only in the intensional rather 
than extensional sense — the class of complexity-theoretically correct provable principles. This is a necessary 
sacrifice, related to the inability of the underlying classical logic to clearly differentiate between constructive 
( n , U , n, U) and "ordinary" , non-constructive versions ( A , V , V, 3) of operators. The inadequacy of classi- 
cal logic as a basis for constructive systems also shows itself in the fact that the above-mentioned soundness 
and completeness results are only partial. 

The above problem of partiality is partially overcome when one bases a complexity-oriented arithmetic 
on intuitionistic logic ([71[3S]) instead of classical logic. In this case, soundness/completeness extends to all 
formulas of the form \/x3yF{x, y), without the "F satisfies such and such constraints" condition (the reason 
why we still consider this sort of soundness/completeness partial is that it remains limited to formulas of the 
form yx3yF{x,y), i.e. functions, which, for us, are only special cases of computational problems). However, 
for reasons pointed out in the previous section, switching to intuitionistic logic signifies throwing out even 
more of the "baby" from the bath tub, further decreasing the intensional strength of the theory and probably 
losing its intuitive clarity or appeal in the eyes of the classically-minded majority. 

Both classical-logic-based and intuitionistic-logic-based systems of bounded arithmetic happen to be 
inherently weak theories, as opposed to our CoL-based version, which is as strong as Godel's incompleteness 
phenomenon permits, and which can be indefinitely strengthened without losing computational soundness. 
We owe this achievement to the fact that CoL gives Caesar what belongs to Caesar, and God what belongs to 
God. As we had a chance to see throughout this paper, classical ( A , V , V, 3) and constructive ( n , U , U) 
logical constructs can peacefully coexist and complement each other in one natural system that seamlessly 
extends the classical, constructive, resource- and complexity-conscious visions and concepts, and does so 
not by mechanically putting things together, but rather on the basis of one natural, all-unifying, complete 
game semantics. Unlike most other approaches where only few, special-form expressions (if any) have clear 
computational interpretations, in our case every formula is a meaningful computational problem. Further, 
we can capture not only computational problems in the traditional sense, but also problems in the more 
general — interactive — sense. 

Classical logic and classical arithmetic, so close (unlike, say, intuitionistic logic or HA) to the heart and 
mind of all of us, do not at all need to be rejected or tampered with in order to achieve constructive heights. 
Just the opposite, they can be put in faithful and useful service to this noble goal. Our heavy reliance on 
reasoning in PA throughout this paper is an eloquent illustration of it. Overall, the present work can be seen 
as an illustration of the fruitfulness of two independently conceived lines of thought — bounded arithmetic 
and computability logic — through a successful marriage between them. 

The forthcoming paper '30] constructs three new, incrementally strong systems of clarithmetic, named 
CLA5, CLA6 and CLA7. In the same sense as CLA4 is sound and complete with respect to polynomial 
time computability, these systems are shown to be sound and complete with respect to polynomial space 
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computability, elementary recursive time computability and primitive recursive time computability, respec- 
tively (as for elementary recursive space and primitive recursive space, they simply coincide with elementary 
recursive time and primitive recursive time). The simplicity and elegance of those systems serves as addi- 
tional empirical evidence for the naturalness of basing applied theories on CoL instead of the more traditional 
alternatives, and for the flexibility and scalability of our approach. All three systems, on top of Axioms 1-7, 
have Axiom 8 as the only extra-Peano axiom (Axiom 9 simply becomes derivable and hence redundant due 
to the presence of a stronger induction rule). CL12 continues to serve as the logical basis for these systems, 
and what varies is only the induction rule. The induction rule of CLA5 differs from that of CLA4 in that, 
while the (two) inductive steps of the latter are based on binary successors, the (single) inductive step of 
the former is based on unary successor, i.e., is the kind old F{x) — > F{x'), with F{x) still required to be a 
polynomially bounded formula. The system CLA6 is obtained from CLA5 by relaxing this requirement in 
the induction rule and, instead, requiring that F(x) be exponentially bounded. And the system CLA7 is 
obtained from CLA6 by removing all conditions on F{x) whatsoever, thus leaving the realm of bounded 
arithmetic. 

The earlier mentioned system CLAl of further strengthens the above series. Its logical basis, just 
like that of all clarithmetical theories we have seen, is CL12. And the nonlogical axioms, just as in the case 
of CLA5, CLA6 and CLA7, are Axioms 1-8 of Section [TT] As we may guess, the only difference between 
CLAl and the weaker systems CLA4-CLA7 is (again) related to how the induction rule operates. Here 
the difference is of a qualitative character due to the fact that CLAl, unlike CLA4-CLA7, is a natural 
deduction system. Namely, while an inductive step of CLA7 is a formula F{x) — >■ F{x'), the corresponding 
inductive step in CLAl is a derivation of F(x') from F{x). In classical systems, according to the deduction 
theorem, a formula E is derivable from a formula G iff the formula G F \s provable, so switching to natural 
deduction in the style of CLAl would create no difference. The situation, however, is very different in (the 
resource-conscious) CoL-based systems, where deriving E from G is generally easier than proving G^E. 
This is so because a derivation may "recycle" its premises while, on the other hand, the antecedent of a -> - 
combination may be "unrecyclable" . For instance, E A E is always derivable from E but, as we had a chance 
to see from Exercise 19.51 E ^ E A E is not always provable (and/or valid). While derivability of F{x') from 
F{x) thus does not generally imply provability of F{x) F(x'), the latter does always imply the former. 
Consequently, CLAl is at least as strong as CLA7, meaning that CLAl, just like CLA7, can extensionally 
prove all primitive recursive time (and/or space) computable problems. A natural expectation here is that, 
at the same time, CLAl takes us "far beyond" primitive recursive time (and/or space) computability, even 
though exactly how far still remains to be understood. 

A Appendix 

Throughout the rest of this appendix, the sole purpose of which is to prove Lemma [14.61 X, X and x are 
as in Section [m The terms "configuration", "state", "tape symbol" etc. exclusively refer to ones of X. We 
assume that and 1 are among the tape symbols, blank will stand for the blank tape symbol. 

The proofs given in this appendix will heavily and repeatedly rely on PA and the results of Section [T2l 
It is important to note that, almost always, this reliance will be only implicit. 

A.l Encoding configurations 

In order to prove Lemma [14.61 we need to introduce a system of encoding for various objects of relevance. 
Whenever O is such an object, '"O"' will stand for its code. 

Let A be the set consisting of all states (of A"), and four versions a, a, a, a of every tape symbol a. As 
opposed to tape symbols, we refer to the elements of A (simply) as symbols. As we are going to see shortly, 
in our encoding of configurations, d (resp. a) means the tape symbol a written on the work (resp. run) tape, 
and the presence (resp. absence) of an underline indicates that the head of the corresponding tape is (resp. 
is not) currently looking at the cell containing a. 

We extend the ~, " notation from tape symbols to strings of tape symbols. Namely, for any such string a, 
a means the result of replacing every symbol a by a in a. Similarly for a. 

We pick and fix a sufficiently large integer 6 and, with ^ standing for 2' throughout the rest of this paper, 
encode each symbol a as a natural number '"a"' with |'~a~'| — ^. As practiced earlier, terminologically and 
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notationally we identify such an '~a~' with the corresponding binary numeral. Thus, the codes of symbols 
are bit strings, all of length K and none starting with a 0. Needless to mention that different symbols are 
required to have different codes. 

Further, where ai, . . . , is a sequence of symbols, we encode it as the binary numeral — again, identified 
with the corresponding number — '"ai^ . . . '~ak~'. We will not always be careful about differentiating objects 
from their codes, and may say something like "the symbol b" where, strictly speaking, the code of that 
symbol is meant, or vice versa. 

We need to make clear what, exactly, is meant by a configuration. According to our earlier informal 
explanation, this is a full description of some "current" situation in <¥, namely, a list indicating the state 
of X, the locations of its two scanning heads, and the contents of its two tapes. The tapes, however, are 
infinite, and we need to agree on how to represent their contents by finite means. Remember our convention 
that a head of an HPM can never move past the leftmost blank cell of the corresponding tape, and that 
the work-tape head can never write the blank symbol. This means that every cell to the left of a blank 
cell will also be blank and, accordingly, when describing a configuration, it would be sufficient to describe 
the contents of its tapes up to (including) the leftmost blank cells. Precisely, we agree to understand each 
configuration C as the following sequence of symbols: 

a, bo, ... bi-i, &j, bi+i, bm, co, ... Cj-i, Cj, Cj+i, . . . Cn (29) 

where, in the context of C, a is the ("current") state of A", bo . . . bm (resp. cq . . . c„) are the contents of cells 
#0 through (resp. #n) of the work (resp. run) tape, and i (resp. j) is the cell ^ of the cell scanned by 
the head of the work (resp. run) tape. In addition, both 6^ = c„ = blank while no other b^ or is blank. 
We encode the above configuration as any other sequence of symbols, i.e., as the binary numeral 

^a^^6o^ ... ^h-i^ ^Ip ^h^i-^ ... ^6,„^ ^co^ ... ^c,-i^^cp^c,+i-^ ... ^c„^ 

In the sequel, we will be using the pseudoterm xoy and several elementary formulas with special names, 
each one being a natural arithmetization of the corresponding predicate shown below: 

• xoy abbreviates x x 2'^' +y. Note that, when x and y are the codes of some sequences ai, . . . , am and 
&i, . . . , 6„ of symbols, x oy is the code of the concatenation ai, . . . , a™, 6i, . . . , &„ of those sequences. 

• N(x, y) says "if x is . . . , bk^ for some symbols bi, . . . ,bk (fc > 0), then y is '~bi, . . . , bk~' ." So, for 
instance, ©C"!, ?, 6"', ^1, :, 0"') is true. 

• C{x) says "x is the code of a configuration". 

• l{x,y) says "x is the code of a configuration of the form ([29]), and i = y" . 

• I{x,y) says "a; is the code of a configuration of the form (f^ . and j = y" . 

• M.{x,y) says "x is the code of a configuration of the form (|29p . and m = y" . 

• Ei{x, y) says "y is the code of the sequence of symbols resulting from changing every to and every 
I to I in the binary numeral representing number a;". So, for instance, E(IOI, ^1,0, 1"') is true. 

• ©(a;, y) says "a; is '~bi, . . . , bk~' for some bits bi, . . . ,bk {k > 0) where bi (if present) is I, and y is the 
number represented by the numeral bi . . . bk \ So, for instance, ]D)('~i,0, 1"', 101) is true. 

• §(a;, y) says "a; is the code of a configuration and y is the code of the deterministic successor (see 
Section 114. Sp of that configuration" . 

• A(z, X, y) says "z is the code of a legitimate configuration C (see Section [T4.5p . x is the code of the yth 
deterministic successor of C, and, for any i with 0<i<y, the state of the ith deterministic successor of C 
is not a move state" . A{z, x, y) thus asserts that, after the (legitimate) configuration z, if Environment 
does not move, X reaches the configuration x within y {y>0) steps, and it does not move during those 
steps, either. 

• A'{z,y) abbreviates 3xA{z, x,y). A'{z,y) thus says that, after reaching the (legitimate) configuration 
z, during the subsequent y (including 0) steps, if Environment does not move, neither does X. 
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• M{z,x) says "z is the code of a legitimate configuration C, x is the code of the ith deterministic 
successor of C for some i>0 and, for each j with 0<j<i, the state of the jth deterministic successor of 
C is a move state iff j=i". M{z,x) thus asserts that z is a legitimate configuration and x is the earliest 
configuration after (and including) z in which X moves in the scenario where Environment does not 
move. 

Lemma A. 1 CLA4 h Uz(z = x o y). 

Proof. Immediate in view of the results of Section [TH ■ 

In the sequel, whenever we write R within a formula or while reasoning in CLA4, it is to be understood 
as a standard variable-free term representing it. For clarity, let us say that this term is followed by K 's. 
We shall implicitly rely on the fact that CLA4 h Uz{z = A) fFact llXB)) . Similarly for t, as well as ^b~' where 
& is a symbol. 

Lemma A. 2 CLA4 h L\yN{x,y). 

Proof. Argue in CLA4. By CLA4-Induction on z, we first want to show 

Ax\z\< \x\ -> Uy{\y\ < \x\ A N([x]f , y)) . (30) 

The base Ax |0|<|x| — !> Uj/(|j/| < |a;| A N([a;]o y)) is solved by choosing (the code of the empty sequence 
of symbols) for y. The left inductive step is 

(i?x |z| < ^ Uy(|y| < A N([a;]f y))) ^ (ilx |zo| < |x| ^ Uy(|y| < A N([a;]o^^l"°l, y))) ■ 

To solve it, we first figure our whether z = Oorz?^0. Ifz = 0, we ignore the antecedent and do in the consequent 
the same as what we did in the base case. Otherwise, if z^O, we wait till Environment chooses a constant 
a for y in the antecedent. Then we compute the value b of N|^|xj^ (remember Fact I12.1"T|) . If b is '~c~' for 
some symbol c (which can be established by using Fact ll2.gl as many times as the number of symbols), then, 
using Lemma lA.ll we compute a o '~c~' and choose the computed value for y in the consequent. Otherwise it 
does not matter what we choose for y, so choose 0. The right inductive step is similar but simpler, as we do 
not need to give the case z = a special consideration. Thus, ([50]) is proven. 

Remember that K=2^. Let a be the ith binary predecessor of that is, we have = abi . . . b{, where 
each bi is either or 1. Such an a can be found by first computing the value of |x| and then, starting 
from that value, repeatedly computing binary successor (the constant) 6 times. Let b be the value of the 
binary predecessor of 2". Note that |6|=a. Plugging b for z in we make this resource compute a value 
c for which N([a;]Q ^ '''' , c), i.e. N([a;]Q c), is true. Now notice that, if x is indeed the code of a sequence of 
symbols, a is the number of symbols in that sequence and, as the length of the code of each symbol is M., we 
have Rxa=\x\; hence, we also have [x]q'"^ = x; hence, as N([a;]Q c) is true, so is N(a;,c). This means that 
we win the target UyN(a;, y) by choosing c for y. M 

Lemma A. 3 CLA4 proves each of the following: 

1. <C{x)^Uyl{x,y). 

2. <C{x)^UyI{x,y). 

3. C(a;)^UyM(a;,y). 

Proof. Here we only prove clause 1 of the lemma. The remaining clauses are similar. 
Argue in CLA4. Let I'(x, z) be (a natural formalization of) the predicate "x is the code of a configuration 
of the form ([29|l . and z<i" . By CLA4-Induction on z, we want to prove 

C{x)^l'{x,\z\)uUy{\y\<\x\Al{x,y)). (31) 

The basis is C{x) F(x, |0|) U LJy(|y| < A I(a;, y)) . We find [a;]^. If the latter is a for some tape symbol 
a, we choose the right U -disjunct in the consequent and then choose for y. Otherwise we choose the left 
disjunct. 
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The left inductive step is 

(C(x) ^ I'(x, \z\) U Uy{\y\ < \x\ A y)) ^ (C(a;) ^ I' (a;, |zO|) U Uy{\y\ < \x\ A I{x, y)) . (32) 

To solve it, we wait till Environment chooses a U -disjunct in the antecedent. If the left disjunct is chosen, 
we find [a;]j^o| x j?- 1^ the latter is a for some tape symbol a, we choose the right U -disjunct in the consequent 
of ([5^ . and specify y as the value of |zO|; otherwise we choose the left U -disjunct there. Suppose now the 
right disjunct is chosen by Environment in the antecedent of (I32p . We further wait till a constant c is chosen 
for y there. Then we choose the right U -disjunct in the consequent of (|32p . and specify y as c in it. The 
right inductive step is virtually the same. It is not hard to see that our strategy is successful. 

Now, the target C{x) — >■ \-iyI{x, y) can be seen to be a logical consequence of ([3T|) . the PA-provable fact 
VxVz(z = |x| ^ -^^'{x, zf) and the CLA4-provable sentence na;Uz(z = |x|). ■ 

Lemma A.4 CLA4 h Uy'E{x,y). 

Proof. Argue in CLA4. By CLA4-Induction on x, we want to show U?/(|j/|<.ftx \x\ AE(a;,2/)), from 
which the target UyE(a;, y) immediately follows by LC. 

The base VAy{\y\<^>^ |0| aE(0,?/)) is solved by choosing (the code of the empty sequence of symbols) 
for y. For the left inductive step 

Uy(|2/| <i? X |x| A E(a;, 2/)) ^ Uy(|y| <ilx |xO| A E(a;0, y)) , 

we first figure out whether x = or not. If yes, we ignore the antecedent and act in the consequent in the same 
way as in the basis case. Otherwise, we wait till Environment chooses a constant a for y in the antecedent. 
Then, using Lemma lA. 11 we compute the value 6 of a o '"0"' and choose b for y in the consequent. The right 
inductive step is similar, with the difference that h should be the value of ao'~i~' there; also, the case of a; = 
does not require a special handling. ■ 

Lemma A.5 CLA4 h -^3yO{x, y) U UyO{x, y) . 

Proof. Argue in CLA4. By CLA4-Induction on z, we want to show that 

j?x|z|<|a;|^^3y©([x]f l"l,2/)uU2/B([a;]f l^l,y). (33) 

The basis .ftx |0| < — )> ^32/D([a;]Q y) U Uy]D)([a;]Q y) is obviously solved by choosing the right U- 
disjunct and specifying y as in it. 
The left inductive step is 

(i?x \z\ < \x\ ^ ^3yD([x]f 1^1, y) U Uy]D)([x]f 1^', y)) -> (j^x |zo| < |.t| ^ ^3yID)([a;]f '^"t, y) U UyO{\x]T^'''\y)) . 

It is solved as follows. If 2 = 0, we do in the consequent the same as in the basis case. Suppose now z^Q. We 
wait till Environment selects a U -disjunct in the antecedent (if there is no such selection, we win). If the 
left disjunct is selected there, we also select the left disjunct in the consequent and rest our case. Suppose 
now Environment selects the right disjunct. We wait till it further selects a constant a for y there. Then 
we compute the value b of If & = '~0~', we select the right U -disjunct in the consequent, compute the 

value c of aO, and specify y as c there. If 6='"!"', we again select the right U -disjunct in the consequent, 
compute the value c of al, and specify y as c there. Finally, if neither h = ^{P nor 6 = '"!"', we select the left 
disjunct and retire in victory. The right inductive step is the same, with the only difference that the case 
z = does not require a special handling there. Obviously our strategy wins, and p3p is thus proven. 

Now, to solve the target -i3y]D)(a;, y) U UyD(x, y), we use a trick similar to the one employed in the proof 
of Lemma [A. 21 Namely, we compute the value a of the 6th binary predecessor of and then the value h 
of the binary predecessor of 2". Note that |&| =a. Taking into account that .Rx a< by plugging h for z in 
P3|) . we essentially turn this resource into 

^3y©([x]f ^y)uUyD([x]o^x^y). 



48 



This way we would either know that -<3yIS){[x]Q^°' ,y) is true, or find a constant c for which (we know that) 
D([a;]o^",c) is true. Note that if x is the code of a sequence of symbols, then is nothing but |a;| and 
hence [x]§'''' is nothing but x. With this observation in mind, if -'3?/D([a;]Q j/) is true, then choosing the 
left disjunct of ^3yD(a;, y) U Uy'D{x,y) wins this game; and, if D([a::]Q^",c) is true, then choosing the right 
disjunct and specifying y as c in it wins the game. ■ 

Lemma A.6 CLA4 h C(x) ^ Uy§{x, y). 

Proof. Argue in CLA4 to justify C(x) — j> U?/§(a;, y). Assume that C(x) is true, namely, that x is (the 
code of) the configuration (|29|) . 

We find the state a of x, which is nothing but [x]^. Next, using clauses 1 and 2 of Lemma [A.3| we 
find the locations i and j of the two scanning heads. Then, using these i and j, we find the symbols b and 
c seen by the two heads. This allows us to find (within PA) the state d of the deterministic successor y 
of x, the symbol e that will overwrite the old symbol h on the work tape, and the directions in which the 
heads move. We now correspondingly update x in several steps. First of all, we change the state of x to d. 
Technically, this is done by computing ^d~^ o [xf^^ ^. In a similar fashion, details of which are left to the 
reader, we change the old underlined symbol of the work tape to e, and move the two underlines according to 
the directions in which the corresponding heads move. In addition, if a is a move state, we find the content 
of the work tape of the original configuration x up to the location of the work-tape head, and append that 
content, T-prefixed and with each symbol s changed to s using Lemma FA. 2| to the content of the run tape 
of X. Finally, if the previously blank cell #m of the work tape is no longer blank, we insert a blank cell to 
the right of it in our representation of the configuration (again, technical details about how, exactly, all this 
can be done, are left as an easy exercise for the reader). The eventual value of x, after the above updates, 
will be exactly the sought value of the deterministic successor of the original x, that is, the value that we 
should choose for y in the consequent of C(a;) — > U2/S(x, y). ■ 

Lemma A.7 CLA4 h C{z)^A'{z, \r\) U \JxM{z,x). 

Proof. Argue in CLA4. By CLA4-Induction on r, we want to prove 



from which the target C(z) — > A'(z, |r|) U UxB(z, x) easily follows by LC. 

To solve the base C(z) -J- Ux(|a;| < |z| + 10| A A(z, x, |0|)) U Ua;(|x| < (|z| + |0|)O A B(z, x)), we figure out whether 
the state of z is a move state or not. If yes, we choose the right U -disjunct; if not, we choose the left U- 
disjunct. In either case, we further choose the value of z for the variable x and win. 

The left inductive step is 



If r = 0, p4p is won by solving its consequent in the same ways as the basis case was solved. Suppose now 
r^O. To solve (|34)). we wait till Environment selects one of the two U-disjuncts in the antecedent. 

If the right U -disjunct is selected, we wait further till a constant c for x is selected there. Then we select 
the right U -disjunct in the consequent, and choose the same c for x in it. 

Suppose now the left U -disjunct is selected in the antecedent of (p4| . Wait further till a constant c for 
X is selected there. We may assume that A(z,c, |r|) is true, or else we win the game. Using Lemma [KM we 
find the deterministic successor d of the configuration c. With a little thought, one can see that the size of 
d cannot exceed the sum of the sizes of z and rO more than twice, so that |(i|<(|z| + |rO|)0 holds. We figure 
out whether the state of d is a move state or not. If not, we select the left U -disjunct in the consequent of 
P4p . otherwise, select the right disjunct. In either case, we further choose d for x and win. 

The right inductive step is virtually the same, with the only difference that the case z = does not require 
a special handling. ■ 



C(z) ^ Ua;(|x| < |z| + |r| A A(z,x, \r 



)) uUa;(|a;|<(|z| + |r|)OAB(z,x)), 



C(z) ^Ua;(|a;|<|2| + |r| A A(z,x, |r|)) U Uj;(|a;| < (|z| + |r|)0 A 8(2, x))^ ^ 
C{z) -> Ux(\x\ < |z| + |rO| A A(z,x, |rO|)) U Ua;(|a;| < (|z| + |rO|)0 A B(z, x))] 



(34) 
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A. 2 Proof of clause (a) of Lemma 114.61 



Assume the conditions of clause (a) of Lemma 114.61 

First, let us consider the case where Hi{y, s) is the result of replacing in E{s) a surface occurrence of a 
subformula FqCiFi by Fj (j=0 or j = l). Let -La be the labmove that brings E{s) down to Hi{y,s). For 
instance, if E{s) is G FqH Fi and Hi{y, s) is G — s> Fq, then ±a is "_L1.0" . 

Argue in CLA4 to justify E°{z, s) \-iuH°{u, y, s). Assume E°{z, s). This implies that z is a legitimate 
configuration with yield E(s), and that the same holds for the deterministic successor b oi z, which we 
compute using Lemma IXBl Then the result of appending _La to the run tape contents of (the configuration 
encoded by) & is a legitimate configuration with yield Hi(y, s). The code of such a configuration is 6 o '".Ld;"'. 
We compute the value c of the latter using Lemma I A. 11 and win E°{z, s) — >• L\uH°{u, y, s) by choosing c for 
u. 

Next, consider the case where Hi{y,s) is the result of replacing in E{s) a surface occurrence of a sub- 
formula VAxF{x) by F{y). Let a be the string such that, for any constant c, the labmove _Lac brings E{s) 
down to Hi{c,s). For instance, if E{s) is G ~^ \~\xF{x) W J and Hi{y,s) is G^F{y)\/J, then a is "1.0."; 
and if E{s) is just r\xF{x), then a is the empty string. 

Argue in CLA4 to justify E°{z, s) UuH°{u, y, s). Let c be the value satisfying E{y, c). We compute 
the latter using Lemma [A. 41 Assume E°{z,s). This implies that z is a legitimate configuration with yield 
E{s). Then the same holds for the deterministic successor 6 of z, which we compute using Lemma lA. 61 Then 
the result of appending -Lay to the run tape contents of (the configuration encoded by) 6 is a legitimate 
configuration with yield H{y, s). The code of such a configuration is 6 o '~_Ld~' o c. We compute the value d 
of the latter using Lemma lA. 11 and win E°{z, s) —>■ \-\uH°{u, y, s) by choosing d for u. 

A. 3 Proof of clause (b) of Lemma 114.61 

Assume the conditions of clause (b) of Lemma ri4.61 In CLA4, we can solve ((25)) as follows. Assume E°{z, s), 
which, of course, implies C(z). We compute the value of the binary predecessor of 2^^l^l\ and use that value 
to specify r in the resource of Lemma [A. 71 As a result, we get the resource A'{z,x{\z\))uUxM{z,x). This 
means that we will either know that A' (^z,xi\z\)) is true, or find a constant a for which we will know that 
M{z, a) is true. 

If A'^z, xd-^D) is true, then so is E°{z, s) and, by choosing the latter, we win (1^ . 

Now, for the rest of this proof, suppose B(z, a) is true. Using clause 3 of Lemma [A. 31 we find the number 
i with I(a, i). Then we find (the code of) the move a that X made in a. Namely, '~a~'= [a]-||^*. Using Lemma 
1A.6| we also find the deterministic successor b of a. Fix these a and b. 

Let /?!,..., be all legal moves in position E{s) that signify a choice of one of the two U -disjuncts in 
some surface subformula Fo U Fi of E{s). Let iJi(y, s), . . . , Hm{y, s) be the corresponding (±, y)-developments 
of £;(s). 

Further, let /3m+i , • • • , /3n be all strings such that, any move signifying a choice of a constant c for x in some 
surface subformula r\xF{x) of E{s) looks like PiC for some i G {m+ 1, . . . , n}. Let iJ,„+i(y, s), . . . , Hn{y, s) 
be the corresponding (_L, y)-developments of E{s). 

To solve ([25]) . we need to solve its consequent, which now can be rewritten as follows: 

E°{z,s)uhuUuUyH°{u,y,s)U ...uUuUyH^{u,y,s)U 

UuUyH°^^,iu,y,s)U ... uUuUyH°iu,y,s). ^^^^ 

This is how we solve p5|) . First, for each i G {1, . . . ,m}, we compare ^d"' with '~/3i~'. If they turn out 
to be the same, then we choose the disjunct UuUyH°{u,y, s) in ([55]) . and specify u and y as b and in it, 
respectively. Here our choice of for y is arbitrary and has no effect on the game, as H°{u,y,s) does not 
contain the variable y, anyway. 

Otherwise, for each i G {m + 1, . . . ,n}, we compare ['~ck~']o' with where is the size of If 

they turn out to be the same, then, we figure out the (code of the) "rest" 7 of the string a. That is, 7 is 
the string such that a = Pi^. Employing Lemma lA.51 we either find a number c with I[!)('~7~', c), or ( U ) find 
out that such a c does not exist {-^3). In the former case, we choose the disjunct UMUy_ff°(u, y, s) in (PSj) 
and specify u and y as b and c in it, respectively. In the latter case, a is an illegal move, so we choose L, 
which is true because X, having made an illegal move, loses. 
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Otherwise, a is simply an illegal move, so we (again) choose L. 

It is left to the reader to convince himself or herself that our strategy succeeds. 
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